search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Don't rely on $wgTitle in WebRequest
[mediawiki.git] / includes / EditPage.php
bloba9925ffeca536b7318b37f0392d26ac2e3c3b062
1 <?php
2 /**
3 * User interface for page editing.
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
19 *
20 * @file
21 */
22
23 /**
24 * The edit page/HTML interface (split from Article)
25 * The actual database and text munging is still in Article,
26 * but it should get easier to call those from alternate
27 * interfaces.
28 *
29 * EditPage cares about two distinct titles:
30 * $this->mContextTitle is the page that forms submit to, links point to,
31 * redirects go to, etc. $this->mTitle (as well as $mArticle) is the
32 * page in the database that is actually being edited. These are
33 * usually the same, but they are now allowed to be different.
34 *
35 * Surgeon General's Warning: prolonged exposure to this class is known to cause
36 * headaches, which may be fatal.
37 */
38 class EditPage {
39 /**
40 * Status: Article successfully updated
41 */
42 const AS_SUCCESS_UPDATE = 200;
43
44 /**
45 * Status: Article successfully created
46 */
47 const AS_SUCCESS_NEW_ARTICLE = 201;
48
49 /**
50 * Status: Article update aborted by a hook function
51 */
52 const AS_HOOK_ERROR = 210;
53
54 /**
55 * Status: A hook function returned an error
56 */
57 const AS_HOOK_ERROR_EXPECTED = 212;
58
59 /**
60 * Status: User is blocked from editing this page
61 */
62 const AS_BLOCKED_PAGE_FOR_USER = 215;
63
64 /**
65 * Status: Content too big (> $wgMaxArticleSize)
66 */
67 const AS_CONTENT_TOO_BIG = 216;
68
69 /**
70 * Status: this anonymous user is not allowed to edit this page
71 */
72 const AS_READ_ONLY_PAGE_ANON = 218;
73
74 /**
75 * Status: this logged in user is not allowed to edit this page
76 */
77 const AS_READ_ONLY_PAGE_LOGGED = 219;
78
79 /**
80 * Status: wiki is in readonly mode (wfReadOnly() == true)
81 */
82 const AS_READ_ONLY_PAGE = 220;
83
84 /**
85 * Status: rate limiter for action 'edit' was tripped
86 */
87 const AS_RATE_LIMITED = 221;
88
89 /**
90 * Status: article was deleted while editing and param wpRecreate == false or form
91 * was not posted
92 */
93 const AS_ARTICLE_WAS_DELETED = 222;
94
95 /**
96 * Status: user tried to create this page, but is not allowed to do that
97 * ( Title->userCan('create') == false )
98 */
99 const AS_NO_CREATE_PERMISSION = 223;
100
101 /**
102 * Status: user tried to create a blank page and wpIgnoreBlankArticle == false
103 */
104 const AS_BLANK_ARTICLE = 224;
105
106 /**
107 * Status: (non-resolvable) edit conflict
108 */
109 const AS_CONFLICT_DETECTED = 225;
110
111 /**
112 * Status: no edit summary given and the user has forceeditsummary set and the user is not
113 * editing in his own userspace or talkspace and wpIgnoreBlankSummary == false
114 */
115 const AS_SUMMARY_NEEDED = 226;
116
117 /**
118 * Status: user tried to create a new section without content
119 */
120 const AS_TEXTBOX_EMPTY = 228;
121
122 /**
123 * Status: article is too big (> $wgMaxArticleSize), after merging in the new section
124 */
125 const AS_MAX_ARTICLE_SIZE_EXCEEDED = 229;
126
127 /**
128 * Status: WikiPage::doEdit() was unsuccessful
129 */
130 const AS_END = 231;
131
132 /**
133 * Status: summary contained spam according to one of the regexes in $wgSummarySpamRegex
134 */
135 const AS_SPAM_ERROR = 232;
136
137 /**
138 * Status: anonymous user is not allowed to upload (User::isAllowed('upload') == false)
139 */
140 const AS_IMAGE_REDIRECT_ANON = 233;
141
142 /**
143 * Status: logged in user is not allowed to upload (User::isAllowed('upload') == false)
144 */
145 const AS_IMAGE_REDIRECT_LOGGED = 234;
146
147 /**
148 * Status: can't parse content
149 */
150 const AS_PARSE_ERROR = 240;
151
152 /**
153 * HTML id and name for the beginning of the edit form.
154 */
155 const EDITFORM_ID = 'editform';
156
157 /**
158 * Prefix of key for cookie used to pass post-edit state.
159 * The revision id edited is added after this
160 */
161 const POST_EDIT_COOKIE_KEY_PREFIX = 'PostEditRevision';
162
163 /**
164 * Duration of PostEdit cookie, in seconds.
165 * The cookie will be removed instantly if the JavaScript runs.
166 *
167 * Otherwise, though, we don't want the cookies to accumulate.
168 * RFC 2109 ( https://www.ietf.org/rfc/rfc2109.txt ) specifies a possible
169 * limit of only 20 cookies per domain. This still applies at least to some
170 * versions of IE without full updates:
171 * https://blogs.msdn.com/b/ieinternals/archive/2009/08/20/wininet-ie-cookie-internals-faq.aspx
172 *
173 * A value of 20 minutes should be enough to take into account slow loads and minor
174 * clock skew while still avoiding cookie accumulation when JavaScript is turned off.
175 */
176 const POST_EDIT_COOKIE_DURATION = 1200;
177
178 /** @var Article */
179 public $mArticle;
180
181 /** @var Title */
182 public $mTitle;
183
184 /** @var null|Title */
185 private $mContextTitle = null;
186
187 /** @var string */
188 public $action = 'submit';
189
190 /** @var bool */
191 public $isConflict = false;
192
193 /** @var bool */
194 public $isCssJsSubpage = false;
195
196 /** @var bool */
197 public $isCssSubpage = false;
198
199 /** @var bool */
200 public $isJsSubpage = false;
201
202 /** @var bool */
203 public $isWrongCaseCssJsPage = false;
204
205 /** @var bool New page or new section */
206 public $isNew = false;
207
208 /** @var bool */
209 public $deletedSinceEdit;
210
211 /** @var string */
212 public $formtype;
213
214 /** @var bool */
215 public $firsttime;
216
217 /** @var bool|stdClass */
218 public $lastDelete;
219
220 /** @var bool */
221 public $mTokenOk = false;
222
223 /** @var bool */
224 public $mTokenOkExceptSuffix = false;
225
226 /** @var bool */
227 public $mTriedSave = false;
228
229 /** @var bool */
230 public $incompleteForm = false;
231
232 /** @var bool */
233 public $tooBig = false;
234
235 /** @var bool */
236 public $kblength = false;
237
238 /** @var bool */
239 public $missingComment = false;
240
241 /** @var bool */
242 public $missingSummary = false;
243
244 /** @var bool */
245 public $allowBlankSummary = false;
246
247 /** @var bool */
248 protected $blankArticle = false;
249
250 /** @var bool */
251 protected $allowBlankArticle = false;
252
253 /** @var string */
254 public $autoSumm = '';
255
256 /** @var string */
257 public $hookError = '';
258
259 /** @var ParserOutput */
260 public $mParserOutput;
261
262 /** @var bool Has a summary been preset using GET parameter &summary= ? */
263 public $hasPresetSummary = false;
264
265 /** @var bool */
266 public $mBaseRevision = false;
267
268 /** @var bool */
269 public $mShowSummaryField = true;
270
271 # Form values
272
273 /** @var bool */
274 public $save = false;
275
276 /** @var bool */
277 public $preview = false;
278
279 /** @var bool */
280 public $diff = false;
281
282 /** @var bool */
283 public $minoredit = false;
284
285 /** @var bool */
286 public $watchthis = false;
287
288 /** @var bool */
289 public $recreate = false;
290
291 /** @var string */
292 public $textbox1 = '';
293
294 /** @var string */
295 public $textbox2 = '';
296
297 /** @var string */
298 public $summary = '';
299
300 /** @var bool */
301 public $nosummary = false;
302
303 /** @var string */
304 public $edittime = '';
305
306 /** @var string */
307 public $section = '';
308
309 /** @var string */
310 public $sectiontitle = '';
311
312 /** @var string */
313 public $starttime = '';
314
315 /** @var int */
316 public $oldid = 0;
317
318 /** @var string */
319 public $editintro = '';
320
321 /** @var null */
322 public $scrolltop = null;
323
324 /** @var bool */
325 public $bot = true;
326
327 /** @var null|string */
328 public $contentModel = null;
329
330 /** @var null|string */
331 public $contentFormat = null;
332
333 # Placeholders for text injection by hooks (must be HTML)
334 # extensions should take care to _append_ to the present value
335
336 /** @var string Before even the preview */
337 public $editFormPageTop = '';
338 public $editFormTextTop = '';
339 public $editFormTextBeforeContent = '';
340 public $editFormTextAfterWarn = '';
341 public $editFormTextAfterTools = '';
342 public $editFormTextBottom = '';
343 public $editFormTextAfterContent = '';
344 public $previewTextAfterContent = '';
345 public $mPreloadContent = null;
346
347 /* $didSave should be set to true whenever an article was successfully altered. */
348 public $didSave = false;
349 public $undidRev = 0;
350
351 public $suppressIntro = false;
352
353 /** @var bool Set to true to allow editing of non-text content types. */
354 public $allowNonTextContent = false;
355
356 /** @var bool */
357 protected $edit;
358
359 /** @var bool */
360 public $live;
361
362 /**
363 * @param Article $article
364 */
365 public function __construct( Article $article ) {
366 $this->mArticle = $article;
367 $this->mTitle = $article->getTitle();
368
369 $this->contentModel = $this->mTitle->getContentModel();
370
371 $handler = ContentHandler::getForModelID( $this->contentModel );
372 $this->contentFormat = $handler->getDefaultFormat();
373 }
374
375 /**
376 * @return Article
377 */
378 public function getArticle() {
379 return $this->mArticle;
380 }
381
382 /**
383 * @since 1.19
384 * @return Title
385 */
386 public function getTitle() {
387 return $this->mTitle;
388 }
389
390 /**
391 * Set the context Title object
392 *
393 * @param Title|null $title Title object or null
394 */
395 public function setContextTitle( $title ) {
396 $this->mContextTitle = $title;
397 }
398
399 /**
400 * Get the context title object.
401 * If not set, $wgTitle will be returned. This behavior might change in
402 * the future to return $this->mTitle instead.
403 *
404 * @return Title
405 */
406 public function getContextTitle() {
407 if ( is_null( $this->mContextTitle ) ) {
408 global $wgTitle;
409 return $wgTitle;
410 } else {
411 return $this->mContextTitle;
412 }
413 }
414
415 /**
416 * Returns if the given content model is editable.
417 *
418 * @param string $modelId The ID of the content model to test. Use CONTENT_MODEL_XXX constants.
419 * @return bool
420 * @throws MWException If $modelId has no known handler
421 */
422 public function isSupportedContentModel( $modelId ) {
423 return $this->allowNonTextContent ||
424 ContentHandler::getForModelID( $modelId ) instanceof TextContentHandler;
425 }
426
427 function submit() {
428 $this->edit();
429 }
430
431 /**
432 * This is the function that gets called for "action=edit". It
433 * sets up various member variables, then passes execution to
434 * another function, usually showEditForm()
435 *
436 * The edit form is self-submitting, so that when things like
437 * preview and edit conflicts occur, we get the same form back
438 * with the extra stuff added. Only when the final submission
439 * is made and all is well do we actually save and redirect to
440 * the newly-edited page.
441 */
442 function edit() {
443 global $wgOut, $wgRequest, $wgUser;
444 // Allow extensions to modify/prevent this form or submission
445 if ( !wfRunHooks( 'AlternateEdit', array( $this ) ) ) {
446 return;
447 }
448
449 wfProfileIn( __METHOD__ );
450 wfDebug( __METHOD__ . ": enter\n" );
451
452 // If they used redlink=1 and the page exists, redirect to the main article
453 if ( $wgRequest->getBool( 'redlink' ) && $this->mTitle->exists() ) {
454 $wgOut->redirect( $this->mTitle->getFullURL() );
455 wfProfileOut( __METHOD__ );
456 return;
457 }
458
459 $this->importFormData( $wgRequest );
460 $this->firsttime = false;
461
462 if ( $this->live ) {
463 $this->livePreview();
464 wfProfileOut( __METHOD__ );
465 return;
466 }
467
468 if ( wfReadOnly() && $this->save ) {
469 // Force preview
470 $this->save = false;
471 $this->preview = true;
472 }
473
474 if ( $this->save ) {
475 $this->formtype = 'save';
476 } elseif ( $this->preview ) {
477 $this->formtype = 'preview';
478 } elseif ( $this->diff ) {
479 $this->formtype = 'diff';
480 } else { # First time through
481 $this->firsttime = true;
482 if ( $this->previewOnOpen() ) {
483 $this->formtype = 'preview';
484 } else {
485 $this->formtype = 'initial';
486 }
487 }
488
489 $permErrors = $this->getEditPermissionErrors();
490 if ( $permErrors ) {
491 wfDebug( __METHOD__ . ": User can't edit\n" );
492 // Auto-block user's IP if the account was "hard" blocked
493 $wgUser->spreadAnyEditBlock();
494
495 $this->displayPermissionsError( $permErrors );
496
497 wfProfileOut( __METHOD__ );
498 return;
499 }
500
501 wfProfileIn( __METHOD__ . "-business-end" );
502
503 $this->isConflict = false;
504 // css / js subpages of user pages get a special treatment
505 $this->isCssJsSubpage = $this->mTitle->isCssJsSubpage();
506 $this->isCssSubpage = $this->mTitle->isCssSubpage();
507 $this->isJsSubpage = $this->mTitle->isJsSubpage();
508 // @todo FIXME: Silly assignment.
509 $this->isWrongCaseCssJsPage = $this->isWrongCaseCssJsPage();
510
511 # Show applicable editing introductions
512 if ( $this->formtype == 'initial' || $this->firsttime ) {
513 $this->showIntro();
514 }
515
516 # Attempt submission here. This will check for edit conflicts,
517 # and redundantly check for locked database, blocked IPs, etc.
518 # that edit() already checked just in case someone tries to sneak
519 # in the back door with a hand-edited submission URL.
520
521 if ( 'save' == $this->formtype ) {
522 if ( !$this->attemptSave() ) {
523 wfProfileOut( __METHOD__ . "-business-end" );
524 wfProfileOut( __METHOD__ );
525 return;
526 }
527 }
528
529 # First time through: get contents, set time for conflict
530 # checking, etc.
531 if ( 'initial' == $this->formtype || $this->firsttime ) {
532 if ( $this->initialiseForm() === false ) {
533 $this->noSuchSectionPage();
534 wfProfileOut( __METHOD__ . "-business-end" );
535 wfProfileOut( __METHOD__ );
536 return;
537 }
538
539 if ( !$this->mTitle->getArticleID() ) {
540 wfRunHooks( 'EditFormPreloadText', array( &$this->textbox1, &$this->mTitle ) );
541 } else {
542 wfRunHooks( 'EditFormInitialText', array( $this ) );
543 }
544
545 }
546
547 $this->showEditForm();
548 wfProfileOut( __METHOD__ . "-business-end" );
549 wfProfileOut( __METHOD__ );
550 }
551
552 /**
553 * @return array
554 */
555 protected function getEditPermissionErrors() {
556 global $wgUser;
557 $permErrors = $this->mTitle->getUserPermissionsErrors( 'edit', $wgUser );
558 # Can this title be created?
559 if ( !$this->mTitle->exists() ) {
560 $permErrors = array_merge( $permErrors,
561 wfArrayDiff2( $this->mTitle->getUserPermissionsErrors( 'create', $wgUser ), $permErrors ) );
562 }
563 # Ignore some permissions errors when a user is just previewing/viewing diffs
564 $remove = array();
565 foreach ( $permErrors as $error ) {
566 if ( ( $this->preview || $this->diff )
567 && ( $error[0] == 'blockedtext' || $error[0] == 'autoblockedtext' )
568 ) {
569 $remove[] = $error;
570 }
571 }
572 $permErrors = wfArrayDiff2( $permErrors, $remove );
573 return $permErrors;
574 }
575
576 /**
577 * Display a permissions error page, like OutputPage::showPermissionsErrorPage(),
578 * but with the following differences:
579 * - If redlink=1, the user will be redirected to the page
580 * - If there is content to display or the error occurs while either saving,
581 * previewing or showing the difference, it will be a
582 * "View source for ..." page displaying the source code after the error message.
583 *
584 * @since 1.19
585 * @param array $permErrors Array of permissions errors, as returned by
586 * Title::getUserPermissionsErrors().
587 * @throws PermissionsError
588 */
589 protected function displayPermissionsError( array $permErrors ) {
590 global $wgRequest, $wgOut;
591
592 if ( $wgRequest->getBool( 'redlink' ) ) {
593 // The edit page was reached via a red link.
594 // Redirect to the article page and let them click the edit tab if
595 // they really want a permission error.
596 $wgOut->redirect( $this->mTitle->getFullURL() );
597 return;
598 }
599
600 $content = $this->getContentObject();
601
602 # Use the normal message if there's nothing to display
603 if ( $this->firsttime && ( !$content || $content->isEmpty() ) ) {
604 $action = $this->mTitle->exists() ? 'edit' :
605 ( $this->mTitle->isTalkPage() ? 'createtalk' : 'createpage' );
606 throw new PermissionsError( $action, $permErrors );
607 }
608
609 wfRunHooks( 'EditPage::showReadOnlyForm:initial', array( $this, &$wgOut ) );
610
611 $wgOut->setRobotPolicy( 'noindex,nofollow' );
612 $wgOut->setPageTitle( wfMessage(
613 'viewsource-title',
614 $this->getContextTitle()->getPrefixedText()
615 ) );
616 $wgOut->addBacklinkSubtitle( $this->getContextTitle() );
617 $wgOut->addWikiText( $wgOut->formatPermissionsErrorMessage( $permErrors, 'edit' ) );
618 $wgOut->addHTML( "<hr />\n" );
619
620 # If the user made changes, preserve them when showing the markup
621 # (This happens when a user is blocked during edit, for instance)
622 if ( !$this->firsttime ) {
623 $text = $this->textbox1;
624 $wgOut->addWikiMsg( 'viewyourtext' );
625 } else {
626 $text = $this->toEditText( $content );
627 $wgOut->addWikiMsg( 'viewsourcetext' );
628 }
629
630 $this->showTextbox( $text, 'wpTextbox1', array( 'readonly' ) );
631
632 $wgOut->addHTML( Html::rawElement( 'div', array( 'class' => 'templatesUsed' ),
633 Linker::formatTemplates( $this->getTemplates() ) ) );
634
635 $wgOut->addModules( 'mediawiki.action.edit.collapsibleFooter' );
636
637 if ( $this->mTitle->exists() ) {
638 $wgOut->returnToMain( null, $this->mTitle );
639 }
640 }
641
642 /**
643 * Should we show a preview when the edit form is first shown?
644 *
645 * @return bool
646 */
647 protected function previewOnOpen() {
648 global $wgRequest, $wgUser, $wgPreviewOnOpenNamespaces;
649 if ( $wgRequest->getVal( 'preview' ) == 'yes' ) {
650 // Explicit override from request
651 return true;
652 } elseif ( $wgRequest->getVal( 'preview' ) == 'no' ) {
653 // Explicit override from request
654 return false;
655 } elseif ( $this->section == 'new' ) {
656 // Nothing *to* preview for new sections
657 return false;
658 } elseif ( ( $wgRequest->getVal( 'preload' ) !== null || $this->mTitle->exists() )
659 && $wgUser->getOption( 'previewonfirst' )
660 ) {
661 // Standard preference behavior
662 return true;
663 } elseif ( !$this->mTitle->exists()
664 && isset( $wgPreviewOnOpenNamespaces[$this->mTitle->getNamespace()] )
665 && $wgPreviewOnOpenNamespaces[$this->mTitle->getNamespace()]
666 ) {
667 // Categories are special
668 return true;
669 } else {
670 return false;
671 }
672 }
673
674 /**
675 * Checks whether the user entered a skin name in uppercase,
676 * e.g. "User:Example/Monobook.css" instead of "monobook.css"
677 *
678 * @return bool
679 */
680 protected function isWrongCaseCssJsPage() {
681 if ( $this->mTitle->isCssJsSubpage() ) {
682 $name = $this->mTitle->getSkinFromCssJsSubpage();
683 $skins = array_merge(
684 array_keys( Skin::getSkinNames() ),
685 array( 'common' )
686 );
687 return !in_array( $name, $skins )
688 && in_array( strtolower( $name ), $skins );
689 } else {
690 return false;
691 }
692 }
693
694 /**
695 * Returns whether section editing is supported for the current page.
696 * Subclasses may override this to replace the default behavior, which is
697 * to check ContentHandler::supportsSections.
698 *
699 * @return bool True if this edit page supports sections, false otherwise.
700 */
701 protected function isSectionEditSupported() {
702 $contentHandler = ContentHandler::getForTitle( $this->mTitle );
703 return $contentHandler->supportsSections();
704 }
705
706 /**
707 * This function collects the form data and uses it to populate various member variables.
708 * @param WebRequest $request
709 * @throws ErrorPageError
710 */
711 function importFormData( &$request ) {
712 global $wgContLang, $wgUser;
713
714 wfProfileIn( __METHOD__ );
715
716 # Section edit can come from either the form or a link
717 $this->section = $request->getVal( 'wpSection', $request->getVal( 'section' ) );
718
719 if ( $this->section !== null && $this->section !== '' && !$this->isSectionEditSupported() ) {
720 wfProfileOut( __METHOD__ );
721 throw new ErrorPageError( 'sectioneditnotsupported-title', 'sectioneditnotsupported-text' );
722 }
723
724 $this->isNew = !$this->mTitle->exists() || $this->section == 'new';
725
726 if ( $request->wasPosted() ) {
727 # These fields need to be checked for encoding.
728 # Also remove trailing whitespace, but don't remove _initial_
729 # whitespace from the text boxes. This may be significant formatting.
730 $this->textbox1 = $this->safeUnicodeInput( $request, 'wpTextbox1' );
731 if ( !$request->getCheck( 'wpTextbox2' ) ) {
732 // Skip this if wpTextbox2 has input, it indicates that we came
733 // from a conflict page with raw page text, not a custom form
734 // modified by subclasses
735 wfProfileIn( get_class( $this ) . "::importContentFormData" );
736 $textbox1 = $this->importContentFormData( $request );
737 if ( $textbox1 !== null ) {
738 $this->textbox1 = $textbox1;
739 }
740
741 wfProfileOut( get_class( $this ) . "::importContentFormData" );
742 }
743
744 # Truncate for whole multibyte characters
745 $this->summary = $wgContLang->truncate( $request->getText( 'wpSummary' ), 255 );
746
747 # If the summary consists of a heading, e.g. '==Foobar==', extract the title from the
748 # header syntax, e.g. 'Foobar'. This is mainly an issue when we are using wpSummary for
749 # section titles.
750 $this->summary = preg_replace( '/^\s*=+\s*(.*?)\s*=+\s*$/', '$1', $this->summary );
751
752 # Treat sectiontitle the same way as summary.
753 # Note that wpSectionTitle is not yet a part of the actual edit form, as wpSummary is
754 # currently doing double duty as both edit summary and section title. Right now this
755 # is just to allow API edits to work around this limitation, but this should be
756 # incorporated into the actual edit form when EditPage is rewritten (Bugs 18654, 26312).
757 $this->sectiontitle = $wgContLang->truncate( $request->getText( 'wpSectionTitle' ), 255 );
758 $this->sectiontitle = preg_replace( '/^\s*=+\s*(.*?)\s*=+\s*$/', '$1', $this->sectiontitle );
759
760 $this->edittime = $request->getVal( 'wpEdittime' );
761 $this->starttime = $request->getVal( 'wpStarttime' );
762
763 $undidRev = $request->getInt( 'wpUndidRevision' );
764 if ( $undidRev ) {
765 $this->undidRev = $undidRev;
766 }
767
768 $this->scrolltop = $request->getIntOrNull( 'wpScrolltop' );
769
770 if ( $this->textbox1 === '' && $request->getVal( 'wpTextbox1' ) === null ) {
771 // wpTextbox1 field is missing, possibly due to being "too big"
772 // according to some filter rules such as Suhosin's setting for
773 // suhosin.request.max_value_length (d'oh)
774 $this->incompleteForm = true;
775 } else {
776 // If we receive the last parameter of the request, we can fairly
777 // claim the POST request has not been truncated.
778
779 // TODO: softened the check for cutover. Once we determine
780 // that it is safe, we should complete the transition by
781 // removing the "edittime" clause.
782 $this->incompleteForm = ( !$request->getVal( 'wpUltimateParam' ) && is_null( $this->edittime ) );
783 }
784 if ( $this->incompleteForm ) {
785 # If the form is incomplete, force to preview.
786 wfDebug( __METHOD__ . ": Form data appears to be incomplete\n" );
787 wfDebug( "POST DATA: " . var_export( $_POST, true ) . "\n" );
788 $this->preview = true;
789 } else {
790 /* Fallback for live preview */
791 $this->preview = $request->getCheck( 'wpPreview' ) || $request->getCheck( 'wpLivePreview' );
792 $this->diff = $request->getCheck( 'wpDiff' );
793
794 // Remember whether a save was requested, so we can indicate
795 // if we forced preview due to session failure.
796 $this->mTriedSave = !$this->preview;
797
798 if ( $this->tokenOk( $request ) ) {
799 # Some browsers will not report any submit button
800 # if the user hits enter in the comment box.
801 # The unmarked state will be assumed to be a save,
802 # if the form seems otherwise complete.
803 wfDebug( __METHOD__ . ": Passed token check.\n" );
804 } elseif ( $this->diff ) {
805 # Failed token check, but only requested "Show Changes".
806 wfDebug( __METHOD__ . ": Failed token check; Show Changes requested.\n" );
807 } else {
808 # Page might be a hack attempt posted from
809 # an external site. Preview instead of saving.
810 wfDebug( __METHOD__ . ": Failed token check; forcing preview\n" );
811 $this->preview = true;
812 }
813 }
814 $this->save = !$this->preview && !$this->diff;
815 if ( !preg_match( '/^\d{14}$/', $this->edittime ) ) {
816 $this->edittime = null;
817 }
818
819 if ( !preg_match( '/^\d{14}$/', $this->starttime ) ) {
820 $this->starttime = null;
821 }
822
823 $this->recreate = $request->getCheck( 'wpRecreate' );
824
825 $this->minoredit = $request->getCheck( 'wpMinoredit' );
826 $this->watchthis = $request->getCheck( 'wpWatchthis' );
827
828 # Don't force edit summaries when a user is editing their own user or talk page
829 if ( ( $this->mTitle->mNamespace == NS_USER || $this->mTitle->mNamespace == NS_USER_TALK )
830 && $this->mTitle->getText() == $wgUser->getName()
831 ) {
832 $this->allowBlankSummary = true;
833 } else {
834 $this->allowBlankSummary = $request->getBool( 'wpIgnoreBlankSummary' )
835 || !$wgUser->getOption( 'forceeditsummary' );
836 }
837
838 $this->autoSumm = $request->getText( 'wpAutoSummary' );
839
840 $this->allowBlankArticle = $request->getBool( 'wpIgnoreBlankArticle' );
841 } else {
842 # Not a posted form? Start with nothing.
843 wfDebug( __METHOD__ . ": Not a posted form.\n" );
844 $this->textbox1 = '';
845 $this->summary = '';
846 $this->sectiontitle = '';
847 $this->edittime = '';
848 $this->starttime = wfTimestampNow();
849 $this->edit = false;
850 $this->preview = false;
851 $this->save = false;
852 $this->diff = false;
853 $this->minoredit = false;
854 // Watch may be overridden by request parameters
855 $this->watchthis = $request->getBool( 'watchthis', false );
856 $this->recreate = false;
857
858 // When creating a new section, we can preload a section title by passing it as the
859 // preloadtitle parameter in the URL (Bug 13100)
860 if ( $this->section == 'new' && $request->getVal( 'preloadtitle' ) ) {
861 $this->sectiontitle = $request->getVal( 'preloadtitle' );
862 // Once wpSummary isn't being use for setting section titles, we should delete this.
863 $this->summary = $request->getVal( 'preloadtitle' );
864 } elseif ( $this->section != 'new' && $request->getVal( 'summary' ) ) {
865 $this->summary = $request->getText( 'summary' );
866 if ( $this->summary !== '' ) {
867 $this->hasPresetSummary = true;
868 }
869 }
870
871 if ( $request->getVal( 'minor' ) ) {
872 $this->minoredit = true;
873 }
874 }
875
876 $this->oldid = $request->getInt( 'oldid' );
877
878 $this->bot = $request->getBool( 'bot', true );
879 $this->nosummary = $request->getBool( 'nosummary' );
880
881 // May be overridden by revision.
882 $this->contentModel = $request->getText( 'model', $this->contentModel );
883 // May be overridden by revision.
884 $this->contentFormat = $request->getText( 'format', $this->contentFormat );
885
886 if ( !ContentHandler::getForModelID( $this->contentModel )
887 ->isSupportedFormat( $this->contentFormat )
888 ) {
889 throw new ErrorPageError(
890 'editpage-notsupportedcontentformat-title',
891 'editpage-notsupportedcontentformat-text',
892 array( $this->contentFormat, ContentHandler::getLocalizedName( $this->contentModel ) )
893 );
894 }
895
896 /**
897 * @todo Check if the desired model is allowed in this namespace, and if
898 * a transition from the page's current model to the new model is
899 * allowed.
900 */
901
902 $this->live = $request->getCheck( 'live' );
903 $this->editintro = $request->getText( 'editintro',
904 // Custom edit intro for new sections
905 $this->section === 'new' ? 'MediaWiki:addsection-editintro' : '' );
906
907 // Allow extensions to modify form data
908 wfRunHooks( 'EditPage::importFormData', array( $this, $request ) );
909
910 wfProfileOut( __METHOD__ );
911 }
912
913 /**
914 * Subpage overridable method for extracting the page content data from the
915 * posted form to be placed in $this->textbox1, if using customized input
916 * this method should be overridden and return the page text that will be used
917 * for saving, preview parsing and so on...
918 *
919 * @param WebRequest $request
920 */
921 protected function importContentFormData( &$request ) {
922 return; // Don't do anything, EditPage already extracted wpTextbox1
923 }
924
925 /**
926 * Initialise form fields in the object
927 * Called on the first invocation, e.g. when a user clicks an edit link
928 * @return bool If the requested section is valid
929 */
930 function initialiseForm() {
931 global $wgUser;
932 $this->edittime = $this->mArticle->getTimestamp();
933
934 $content = $this->getContentObject( false ); #TODO: track content object?!
935 if ( $content === false ) {
936 return false;
937 }
938 $this->textbox1 = $this->toEditText( $content );
939
940 // activate checkboxes if user wants them to be always active
941 # Sort out the "watch" checkbox
942 if ( $wgUser->getOption( 'watchdefault' ) ) {
943 # Watch all edits
944 $this->watchthis = true;
945 } elseif ( $wgUser->getOption( 'watchcreations' ) && !$this->mTitle->exists() ) {
946 # Watch creations
947 $this->watchthis = true;
948 } elseif ( $wgUser->isWatched( $this->mTitle ) ) {
949 # Already watched
950 $this->watchthis = true;
951 }
952 if ( $wgUser->getOption( 'minordefault' ) && !$this->isNew ) {
953 $this->minoredit = true;
954 }
955 if ( $this->textbox1 === false ) {
956 return false;
957 }
958 return true;
959 }
960
961 /**
962 * @param Content|null $def_content The default value to return
963 *
964 * @return Content|null Content on success, $def_content for invalid sections
965 *
966 * @since 1.21
967 */
968 protected function getContentObject( $def_content = null ) {
969 global $wgOut, $wgRequest, $wgUser, $wgContLang;
970
971 wfProfileIn( __METHOD__ );
972
973 $content = false;
974
975 // For message page not locally set, use the i18n message.
976 // For other non-existent articles, use preload text if any.
977 if ( !$this->mTitle->exists() || $this->section == 'new' ) {
978 if ( $this->mTitle->getNamespace() == NS_MEDIAWIKI && $this->section != 'new' ) {
979 # If this is a system message, get the default text.
980 $msg = $this->mTitle->getDefaultMessageText();
981
982 $content = $this->toEditContent( $msg );
983 }
984 if ( $content === false ) {
985 # If requested, preload some text.
986 $preload = $wgRequest->getVal( 'preload',
987 // Custom preload text for new sections
988 $this->section === 'new' ? 'MediaWiki:addsection-preload' : '' );
989 $params = $wgRequest->getArray( 'preloadparams', array() );
990
991 $content = $this->getPreloadedContent( $preload, $params );
992 }
993 // For existing pages, get text based on "undo" or section parameters.
994 } else {
995 if ( $this->section != '' ) {
996 // Get section edit text (returns $def_text for invalid sections)
997 $orig = $this->getOriginalContent( $wgUser );
998 $content = $orig ? $orig->getSection( $this->section ) : null;
999
1000 if ( !$content ) {
1001 $content = $def_content;
1002 }
1003 } else {
1004 $undoafter = $wgRequest->getInt( 'undoafter' );
1005 $undo = $wgRequest->getInt( 'undo' );
1006
1007 if ( $undo > 0 && $undoafter > 0 ) {
1008
1009 $undorev = Revision::newFromId( $undo );
1010 $oldrev = Revision::newFromId( $undoafter );
1011
1012 # Sanity check, make sure it's the right page,
1013 # the revisions exist and they were not deleted.
1014 # Otherwise, $content will be left as-is.
1015 if ( !is_null( $undorev ) && !is_null( $oldrev ) &&
1016 !$undorev->isDeleted( Revision::DELETED_TEXT ) &&
1017 !$oldrev->isDeleted( Revision::DELETED_TEXT ) ) {
1018
1019 $content = $this->mArticle->getUndoContent( $undorev, $oldrev );
1020
1021 if ( $content === false ) {
1022 # Warn the user that something went wrong
1023 $undoMsg = 'failure';
1024 } else {
1025 $oldContent = $this->mArticle->getPage()->getContent( Revision::RAW );
1026 $popts = ParserOptions::newFromUserAndLang( $wgUser, $wgContLang );
1027 $newContent = $content->preSaveTransform( $this->mTitle, $wgUser, $popts );
1028
1029 if ( $newContent->equals( $oldContent ) ) {
1030 # Tell the user that the undo results in no change,
1031 # i.e. the revisions were already undone.
1032 $undoMsg = 'nochange';
1033 $content = false;
1034 } else {
1035 # Inform the user of our success and set an automatic edit summary
1036 $undoMsg = 'success';
1037
1038 # If we just undid one rev, use an autosummary
1039 $firstrev = $oldrev->getNext();
1040 if ( $firstrev && $firstrev->getId() == $undo ) {
1041 $userText = $undorev->getUserText();
1042 if ( $userText === '' ) {
1043 $undoSummary = wfMessage(
1044 'undo-summary-username-hidden',
1045 $undo
1046 )->inContentLanguage()->text();
1047 } else {
1048 $undoSummary = wfMessage(
1049 'undo-summary',
1050 $undo,
1051 $userText
1052 )->inContentLanguage()->text();
1053 }
1054 if ( $this->summary === '' ) {
1055 $this->summary = $undoSummary;
1056 } else {
1057 $this->summary = $undoSummary . wfMessage( 'colon-separator' )
1058 ->inContentLanguage()->text() . $this->summary;
1059 }
1060 $this->undidRev = $undo;
1061 }
1062 $this->formtype = 'diff';
1063 }
1064 }
1065 } else {
1066 // Failed basic sanity checks.
1067 // Older revisions may have been removed since the link
1068 // was created, or we may simply have got bogus input.
1069 $undoMsg = 'norev';
1070 }
1071
1072 // Messages: undo-success, undo-failure, undo-norev, undo-nochange
1073 $class = ( $undoMsg == 'success' ? '' : 'error ' ) . "mw-undo-{$undoMsg}";
1074 $this->editFormPageTop .= $wgOut->parse( "<div class=\"{$class}\">" .
1075 wfMessage( 'undo-' . $undoMsg )->plain() . '</div>', true, /* interface */true );
1076 }
1077
1078 if ( $content === false ) {
1079 $content = $this->getOriginalContent( $wgUser );
1080 }
1081 }
1082 }
1083
1084 wfProfileOut( __METHOD__ );
1085 return $content;
1086 }
1087
1088 /**
1089 * Get the content of the wanted revision, without section extraction.
1090 *
1091 * The result of this function can be used to compare user's input with
1092 * section replaced in its context (using WikiPage::replaceSection())
1093 * to the original text of the edit.
1094 *
1095 * This differs from Article::getContent() that when a missing revision is
1096 * encountered the result will be null and not the
1097 * 'missing-revision' message.
1098 *
1099 * @since 1.19
1100 * @param User $user The user to get the revision for
1101 * @return Content|null
1102 */
1103 private function getOriginalContent( User $user ) {
1104 if ( $this->section == 'new' ) {
1105 return $this->getCurrentContent();
1106 }
1107 $revision = $this->mArticle->getRevisionFetched();
1108 if ( $revision === null ) {
1109 if ( !$this->contentModel ) {
1110 $this->contentModel = $this->getTitle()->getContentModel();
1111 }
1112 $handler = ContentHandler::getForModelID( $this->contentModel );
1113
1114 return $handler->makeEmptyContent();
1115 }
1116 $content = $revision->getContent( Revision::FOR_THIS_USER, $user );
1117 return $content;
1118 }
1119
1120 /**
1121 * Get the current content of the page. This is basically similar to
1122 * WikiPage::getContent( Revision::RAW ) except that when the page doesn't exist an empty
1123 * content object is returned instead of null.
1124 *
1125 * @since 1.21
1126 * @return Content
1127 */
1128 protected function getCurrentContent() {
1129 $rev = $this->mArticle->getRevision();
1130 $content = $rev ? $rev->getContent( Revision::RAW ) : null;
1131
1132 if ( $content === false || $content === null ) {
1133 if ( !$this->contentModel ) {
1134 $this->contentModel = $this->getTitle()->getContentModel();
1135 }
1136 $handler = ContentHandler::getForModelID( $this->contentModel );
1137
1138 return $handler->makeEmptyContent();
1139 } else {
1140 # nasty side-effect, but needed for consistency
1141 $this->contentModel = $rev->getContentModel();
1142 $this->contentFormat = $rev->getContentFormat();
1143
1144 return $content;
1145 }
1146 }
1147
1148 /**
1149 * Use this method before edit() to preload some content into the edit box
1150 *
1151 * @param Content $content
1152 *
1153 * @since 1.21
1154 */
1155 public function setPreloadedContent( Content $content ) {
1156 $this->mPreloadContent = $content;
1157 }
1158
1159 /**
1160 * Get the contents to be preloaded into the box, either set by
1161 * an earlier setPreloadText() or by loading the given page.
1162 *
1163 * @param string $preload Representing the title to preload from.
1164 * @param array $params Parameters to use (interface-message style) in the preloaded text
1165 *
1166 * @return Content
1167 *
1168 * @since 1.21
1169 */
1170 protected function getPreloadedContent( $preload, $params = array() ) {
1171 global $wgUser;
1172
1173 if ( !empty( $this->mPreloadContent ) ) {
1174 return $this->mPreloadContent;
1175 }
1176
1177 $handler = ContentHandler::getForTitle( $this->getTitle() );
1178
1179 if ( $preload === '' ) {
1180 return $handler->makeEmptyContent();
1181 }
1182
1183 $title = Title::newFromText( $preload );
1184 # Check for existence to avoid getting MediaWiki:Noarticletext
1185 if ( $title === null || !$title->exists() || !$title->userCan( 'read', $wgUser ) ) {
1186 //TODO: somehow show a warning to the user!
1187 return $handler->makeEmptyContent();
1188 }
1189
1190 $page = WikiPage::factory( $title );
1191 if ( $page->isRedirect() ) {
1192 $title = $page->getRedirectTarget();
1193 # Same as before
1194 if ( $title === null || !$title->exists() || !$title->userCan( 'read', $wgUser ) ) {
1195 //TODO: somehow show a warning to the user!
1196 return $handler->makeEmptyContent();
1197 }
1198 $page = WikiPage::factory( $title );
1199 }
1200
1201 $parserOptions = ParserOptions::newFromUser( $wgUser );
1202 $content = $page->getContent( Revision::RAW );
1203
1204 if ( !$content ) {
1205 //TODO: somehow show a warning to the user!
1206 return $handler->makeEmptyContent();
1207 }
1208
1209 if ( $content->getModel() !== $handler->getModelID() ) {
1210 $converted = $content->convert( $handler->getModelID() );
1211
1212 if ( !$converted ) {
1213 //TODO: somehow show a warning to the user!
1214 wfDebug( "Attempt to preload incompatible content: "
1215 . "can't convert " . $content->getModel()
1216 . " to " . $handler->getModelID() );
1217
1218 return $handler->makeEmptyContent();
1219 }
1220
1221 $content = $converted;
1222 }
1223
1224 return $content->preloadTransform( $title, $parserOptions, $params );
1225 }
1226
1227 /**
1228 * Make sure the form isn't faking a user's credentials.
1229 *
1230 * @param WebRequest $request
1231 * @return bool
1232 * @private
1233 */
1234 function tokenOk( &$request ) {
1235 global $wgUser;
1236 $token = $request->getVal( 'wpEditToken' );
1237 $this->mTokenOk = $wgUser->matchEditToken( $token );
1238 $this->mTokenOkExceptSuffix = $wgUser->matchEditTokenNoSuffix( $token );
1239 return $this->mTokenOk;
1240 }
1241
1242 /**
1243 * Sets post-edit cookie indicating the user just saved a particular revision.
1244 *
1245 * This uses a temporary cookie for each revision ID so separate saves will never
1246 * interfere with each other.
1247 *
1248 * The cookie is deleted in the mediawiki.action.view.postEdit JS module after
1249 * the redirect. It must be clearable by JavaScript code, so it must not be
1250 * marked HttpOnly. The JavaScript code converts the cookie to a wgPostEdit config
1251 * variable.
1252 *
1253 * If the variable were set on the server, it would be cached, which is unwanted
1254 * since the post-edit state should only apply to the load right after the save.
1255 *
1256 * @param int $statusValue The status value (to check for new article status)
1257 */
1258 protected function setPostEditCookie( $statusValue ) {
1259 $revisionId = $this->mArticle->getLatest();
1260 $postEditKey = self::POST_EDIT_COOKIE_KEY_PREFIX . $revisionId;
1261
1262 $val = 'saved';
1263 if ( $statusValue == self::AS_SUCCESS_NEW_ARTICLE ) {
1264 $val = 'created';
1265 } elseif ( $this->oldid ) {
1266 $val = 'restored';
1267 }
1268
1269 $response = RequestContext::getMain()->getRequest()->response();
1270 $response->setcookie( $postEditKey, $val, time() + self::POST_EDIT_COOKIE_DURATION, array(
1271 'httpOnly' => false,
1272 ) );
1273 }
1274
1275 /**
1276 * Attempt submission
1277 * @throws UserBlockedError|ReadOnlyError|ThrottledError|PermissionsError
1278 * @return bool False if output is done, true if the rest of the form should be displayed
1279 */
1280 public function attemptSave() {
1281 global $wgUser;
1282
1283 $resultDetails = false;
1284 # Allow bots to exempt some edits from bot flagging
1285 $bot = $wgUser->isAllowed( 'bot' ) && $this->bot;
1286 $status = $this->internalAttemptSave( $resultDetails, $bot );
1287
1288 return $this->handleStatus( $status, $resultDetails );
1289 }
1290
1291 /**
1292 * Handle status, such as after attempt save
1293 *
1294 * @param Status $status
1295 * @param array|bool $resultDetails
1296 *
1297 * @throws ErrorPageError
1298 * @return bool False, if output is done, true if rest of the form should be displayed
1299 */
1300 private function handleStatus( Status $status, $resultDetails ) {
1301 global $wgUser, $wgOut;
1302
1303 /**
1304 * @todo FIXME: once the interface for internalAttemptSave() is made
1305 * nicer, this should use the message in $status
1306 */
1307 if ( $status->value == self::AS_SUCCESS_UPDATE
1308 || $status->value == self::AS_SUCCESS_NEW_ARTICLE
1309 ) {
1310 $this->didSave = true;
1311 if ( !$resultDetails['nullEdit'] ) {
1312 $this->setPostEditCookie( $status->value );
1313 }
1314 }
1315
1316 switch ( $status->value ) {
1317 case self::AS_HOOK_ERROR_EXPECTED:
1318 case self::AS_CONTENT_TOO_BIG:
1319 case self::AS_ARTICLE_WAS_DELETED:
1320 case self::AS_CONFLICT_DETECTED:
1321 case self::AS_SUMMARY_NEEDED:
1322 case self::AS_TEXTBOX_EMPTY:
1323 case self::AS_MAX_ARTICLE_SIZE_EXCEEDED:
1324 case self::AS_END:
1325 case self::AS_BLANK_ARTICLE:
1326 return true;
1327
1328 case self::AS_HOOK_ERROR:
1329 return false;
1330
1331 case self::AS_PARSE_ERROR:
1332 $wgOut->addWikiText( '<div class="error">' . $status->getWikiText() . '</div>' );
1333 return true;
1334
1335 case self::AS_SUCCESS_NEW_ARTICLE:
1336 $query = $resultDetails['redirect'] ? 'redirect=no' : '';
1337 $anchor = isset( $resultDetails['sectionanchor'] ) ? $resultDetails['sectionanchor'] : '';
1338 $wgOut->redirect( $this->mTitle->getFullURL( $query ) . $anchor );
1339 return false;
1340
1341 case self::AS_SUCCESS_UPDATE:
1342 $extraQuery = '';
1343 $sectionanchor = $resultDetails['sectionanchor'];
1344
1345 // Give extensions a chance to modify URL query on update
1346 wfRunHooks(
1347 'ArticleUpdateBeforeRedirect',
1348 array( $this->mArticle, &$sectionanchor, &$extraQuery )
1349 );
1350
1351 if ( $resultDetails['redirect'] ) {
1352 if ( $extraQuery == '' ) {
1353 $extraQuery = 'redirect=no';
1354 } else {
1355 $extraQuery = 'redirect=no&' . $extraQuery;
1356 }
1357 }
1358 $wgOut->redirect( $this->mTitle->getFullURL( $extraQuery ) . $sectionanchor );
1359 return false;
1360
1361 case self::AS_SPAM_ERROR:
1362 $this->spamPageWithContent( $resultDetails['spam'] );
1363 return false;
1364
1365 case self::AS_BLOCKED_PAGE_FOR_USER:
1366 throw new UserBlockedError( $wgUser->getBlock() );
1367
1368 case self::AS_IMAGE_REDIRECT_ANON:
1369 case self::AS_IMAGE_REDIRECT_LOGGED:
1370 throw new PermissionsError( 'upload' );
1371
1372 case self::AS_READ_ONLY_PAGE_ANON:
1373 case self::AS_READ_ONLY_PAGE_LOGGED:
1374 throw new PermissionsError( 'edit' );
1375
1376 case self::AS_READ_ONLY_PAGE:
1377 throw new ReadOnlyError;
1378
1379 case self::AS_RATE_LIMITED:
1380 throw new ThrottledError();
1381
1382 case self::AS_NO_CREATE_PERMISSION:
1383 $permission = $this->mTitle->isTalkPage() ? 'createtalk' : 'createpage';
1384 throw new PermissionsError( $permission );
1385
1386 default:
1387 // We don't recognize $status->value. The only way that can happen
1388 // is if an extension hook aborted from inside ArticleSave.
1389 // Render the status object into $this->hookError
1390 // FIXME this sucks, we should just use the Status object throughout
1391 $this->hookError = '<div class="error">' . $status->getWikitext() .
1392 '</div>';
1393 return true;
1394 }
1395 }
1396
1397 /**
1398 * Run hooks that can filter edits just before they get saved.
1399 *
1400 * @param Content $content The Content to filter.
1401 * @param Status $status For reporting the outcome to the caller
1402 * @param User $user The user performing the edit
1403 *
1404 * @return bool
1405 */
1406 protected function runPostMergeFilters( Content $content, Status $status, User $user ) {
1407 // Run old style post-section-merge edit filter
1408 if ( !ContentHandler::runLegacyHooks( 'EditFilterMerged',
1409 array( $this, $content, &$this->hookError, $this->summary ) ) ) {
1410
1411 # Error messages etc. could be handled within the hook...
1412 $status->fatal( 'hookaborted' );
1413 $status->value = self::AS_HOOK_ERROR;
1414 return false;
1415 } elseif ( $this->hookError != '' ) {
1416 # ...or the hook could be expecting us to produce an error
1417 $status->fatal( 'hookaborted' );
1418 $status->value = self::AS_HOOK_ERROR_EXPECTED;
1419 return false;
1420 }
1421
1422 // Run new style post-section-merge edit filter
1423 if ( !wfRunHooks( 'EditFilterMergedContent',
1424 array( $this->mArticle->getContext(), $content, $status, $this->summary,
1425 $user, $this->minoredit ) ) ) {
1426
1427 # Error messages etc. could be handled within the hook...
1428 // XXX: $status->value may already be something informative...
1429 $this->hookError = $status->getWikiText();
1430 $status->fatal( 'hookaborted' );
1431 $status->value = self::AS_HOOK_ERROR;
1432 return false;
1433 } elseif ( !$status->isOK() ) {
1434 # ...or the hook could be expecting us to produce an error
1435 // FIXME this sucks, we should just use the Status object throughout
1436 $this->hookError = $status->getWikiText();
1437 $status->fatal( 'hookaborted' );
1438 $status->value = self::AS_HOOK_ERROR_EXPECTED;
1439 return false;
1440 }
1441
1442 return true;
1443 }
1444
1445 /**
1446 * Return the summary to be used for a new section.
1447 *
1448 * @param string $sectionanchor Set to the section anchor text
1449 * @return string
1450 */
1451 private function newSectionSummary( &$sectionanchor = null ) {
1452 global $wgParser;
1453
1454 if ( $this->sectiontitle !== '' ) {
1455 $sectionanchor = $wgParser->guessLegacySectionNameFromWikiText( $this->sectiontitle );
1456 // If no edit summary was specified, create one automatically from the section
1457 // title and have it link to the new section. Otherwise, respect the summary as
1458 // passed.
1459 if ( $this->summary === '' ) {
1460 $cleanSectionTitle = $wgParser->stripSectionName( $this->sectiontitle );
1461 return wfMessage( 'newsectionsummary' )
1462 ->rawParams( $cleanSectionTitle )->inContentLanguage()->text();
1463 }
1464 } elseif ( $this->summary !== '' ) {
1465 $sectionanchor = $wgParser->guessLegacySectionNameFromWikiText( $this->summary );
1466 # This is a new section, so create a link to the new section
1467 # in the revision summary.
1468 $cleanSummary = $wgParser->stripSectionName( $this->summary );
1469 return wfMessage( 'newsectionsummary' )
1470 ->rawParams( $cleanSummary )->inContentLanguage()->text();
1471 }
1472 return $this->summary;
1473 }
1474
1475 /**
1476 * Attempt submission (no UI)
1477 *
1478 * @param array $result Array to add statuses to, currently with the
1479 * possible keys:
1480 * - spam (string): Spam string from content if any spam is detected by
1481 * matchSpamRegex.
1482 * - sectionanchor (string): Section anchor for a section save.
1483 * - nullEdit (boolean): Set if doEditContent is OK. True if null edit,
1484 * false otherwise.
1485 * - redirect (bool): Set if doEditContent is OK. True if resulting
1486 * revision is a redirect.
1487 * @param bool $bot True if edit is being made under the bot right.
1488 *
1489 * @return Status Status object, possibly with a message, but always with
1490 * one of the AS_* constants in $status->value,
1491 *
1492 * @todo FIXME: This interface is TERRIBLE, but hard to get rid of due to
1493 * various error display idiosyncrasies. There are also lots of cases
1494 * where error metadata is set in the object and retrieved later instead
1495 * of being returned, e.g. AS_CONTENT_TOO_BIG and
1496 * AS_BLOCKED_PAGE_FOR_USER. All that stuff needs to be cleaned up some
1497 * time.
1498 */
1499 function internalAttemptSave( &$result, $bot = false ) {
1500 global $wgUser, $wgRequest, $wgParser, $wgMaxArticleSize;
1501
1502 $status = Status::newGood();
1503
1504 wfProfileIn( __METHOD__ );
1505 wfProfileIn( __METHOD__ . '-checks' );
1506
1507 if ( !wfRunHooks( 'EditPage::attemptSave', array( $this ) ) ) {
1508 wfDebug( "Hook 'EditPage::attemptSave' aborted article saving\n" );
1509 $status->fatal( 'hookaborted' );
1510 $status->value = self::AS_HOOK_ERROR;
1511 wfProfileOut( __METHOD__ . '-checks' );
1512 wfProfileOut( __METHOD__ );
1513 return $status;
1514 }
1515
1516 $spam = $wgRequest->getText( 'wpAntispam' );
1517 if ( $spam !== '' ) {
1518 wfDebugLog(
1519 'SimpleAntiSpam',
1520 $wgUser->getName() .
1521 ' editing "' .
1522 $this->mTitle->getPrefixedText() .
1523 '" submitted bogus field "' .
1524 $spam .
1525 '"'
1526 );
1527 $status->fatal( 'spamprotectionmatch', false );
1528 $status->value = self::AS_SPAM_ERROR;
1529 wfProfileOut( __METHOD__ . '-checks' );
1530 wfProfileOut( __METHOD__ );
1531 return $status;
1532 }
1533
1534 try {
1535 # Construct Content object
1536 $textbox_content = $this->toEditContent( $this->textbox1 );
1537 } catch ( MWContentSerializationException $ex ) {
1538 $status->fatal(
1539 'content-failed-to-parse',
1540 $this->contentModel,
1541 $this->contentFormat,
1542 $ex->getMessage()
1543 );
1544 $status->value = self::AS_PARSE_ERROR;
1545 wfProfileOut( __METHOD__ . '-checks' );
1546 wfProfileOut( __METHOD__ );
1547 return $status;
1548 }
1549
1550 # Check image redirect
1551 if ( $this->mTitle->getNamespace() == NS_FILE &&
1552 $textbox_content->isRedirect() &&
1553 !$wgUser->isAllowed( 'upload' )
1554 ) {
1555 $code = $wgUser->isAnon() ? self::AS_IMAGE_REDIRECT_ANON : self::AS_IMAGE_REDIRECT_LOGGED;
1556 $status->setResult( false, $code );
1557
1558 wfProfileOut( __METHOD__ . '-checks' );
1559 wfProfileOut( __METHOD__ );
1560
1561 return $status;
1562 }
1563
1564 # Check for spam
1565 $match = self::matchSummarySpamRegex( $this->summary );
1566 if ( $match === false && $this->section == 'new' ) {
1567 # $wgSpamRegex is enforced on this new heading/summary because, unlike
1568 # regular summaries, it is added to the actual wikitext.
1569 if ( $this->sectiontitle !== '' ) {
1570 # This branch is taken when the API is used with the 'sectiontitle' parameter.
1571 $match = self::matchSpamRegex( $this->sectiontitle );
1572 } else {
1573 # This branch is taken when the "Add Topic" user interface is used, or the API
1574 # is used with the 'summary' parameter.
1575 $match = self::matchSpamRegex( $this->summary );
1576 }
1577 }
1578 if ( $match === false ) {
1579 $match = self::matchSpamRegex( $this->textbox1 );
1580 }
1581 if ( $match !== false ) {
1582 $result['spam'] = $match;
1583 $ip = $wgRequest->getIP();
1584 $pdbk = $this->mTitle->getPrefixedDBkey();
1585 $match = str_replace( "\n", '', $match );
1586 wfDebugLog( 'SpamRegex', "$ip spam regex hit [[$pdbk]]: \"$match\"" );
1587 $status->fatal( 'spamprotectionmatch', $match );
1588 $status->value = self::AS_SPAM_ERROR;
1589 wfProfileOut( __METHOD__ . '-checks' );
1590 wfProfileOut( __METHOD__ );
1591 return $status;
1592 }
1593 if ( !wfRunHooks(
1594 'EditFilter',
1595 array( $this, $this->textbox1, $this->section, &$this->hookError, $this->summary ) )
1596 ) {
1597 # Error messages etc. could be handled within the hook...
1598 $status->fatal( 'hookaborted' );
1599 $status->value = self::AS_HOOK_ERROR;
1600 wfProfileOut( __METHOD__ . '-checks' );
1601 wfProfileOut( __METHOD__ );
1602 return $status;
1603 } elseif ( $this->hookError != '' ) {
1604 # ...or the hook could be expecting us to produce an error
1605 $status->fatal( 'hookaborted' );
1606 $status->value = self::AS_HOOK_ERROR_EXPECTED;
1607 wfProfileOut( __METHOD__ . '-checks' );
1608 wfProfileOut( __METHOD__ );
1609 return $status;
1610 }
1611
1612 if ( $wgUser->isBlockedFrom( $this->mTitle, false ) ) {
1613 // Auto-block user's IP if the account was "hard" blocked
1614 $wgUser->spreadAnyEditBlock();
1615 # Check block state against master, thus 'false'.
1616 $status->setResult( false, self::AS_BLOCKED_PAGE_FOR_USER );
1617 wfProfileOut( __METHOD__ . '-checks' );
1618 wfProfileOut( __METHOD__ );
1619 return $status;
1620 }
1621
1622 $this->kblength = (int)( strlen( $this->textbox1 ) / 1024 );
1623 if ( $this->kblength > $wgMaxArticleSize ) {
1624 // Error will be displayed by showEditForm()
1625 $this->tooBig = true;
1626 $status->setResult( false, self::AS_CONTENT_TOO_BIG );
1627 wfProfileOut( __METHOD__ . '-checks' );
1628 wfProfileOut( __METHOD__ );
1629 return $status;
1630 }
1631
1632 if ( !$wgUser->isAllowed( 'edit' ) ) {
1633 if ( $wgUser->isAnon() ) {
1634 $status->setResult( false, self::AS_READ_ONLY_PAGE_ANON );
1635 wfProfileOut( __METHOD__ . '-checks' );
1636 wfProfileOut( __METHOD__ );
1637 return $status;
1638 } else {
1639 $status->fatal( 'readonlytext' );
1640 $status->value = self::AS_READ_ONLY_PAGE_LOGGED;
1641 wfProfileOut( __METHOD__ . '-checks' );
1642 wfProfileOut( __METHOD__ );
1643 return $status;
1644 }
1645 }
1646
1647 if ( wfReadOnly() ) {
1648 $status->fatal( 'readonlytext' );
1649 $status->value = self::AS_READ_ONLY_PAGE;
1650 wfProfileOut( __METHOD__ . '-checks' );
1651 wfProfileOut( __METHOD__ );
1652 return $status;
1653 }
1654 if ( $wgUser->pingLimiter() || $wgUser->pingLimiter( 'linkpurge', 0 ) ) {
1655 $status->fatal( 'actionthrottledtext' );
1656 $status->value = self::AS_RATE_LIMITED;
1657 wfProfileOut( __METHOD__ . '-checks' );
1658 wfProfileOut( __METHOD__ );
1659 return $status;
1660 }
1661
1662 # If the article has been deleted while editing, don't save it without
1663 # confirmation
1664 if ( $this->wasDeletedSinceLastEdit() && !$this->recreate ) {
1665 $status->setResult( false, self::AS_ARTICLE_WAS_DELETED );
1666 wfProfileOut( __METHOD__ . '-checks' );
1667 wfProfileOut( __METHOD__ );
1668 return $status;
1669 }
1670
1671 wfProfileOut( __METHOD__ . '-checks' );
1672
1673 # Load the page data from the master. If anything changes in the meantime,
1674 # we detect it by using page_latest like a token in a 1 try compare-and-swap.
1675 $this->mArticle->loadPageData( 'fromdbmaster' );
1676 $new = !$this->mArticle->exists();
1677
1678 if ( $new ) {
1679 // Late check for create permission, just in case *PARANOIA*
1680 if ( !$this->mTitle->userCan( 'create', $wgUser ) ) {
1681 $status->fatal( 'nocreatetext' );
1682 $status->value = self::AS_NO_CREATE_PERMISSION;
1683 wfDebug( __METHOD__ . ": no create permission\n" );
1684 wfProfileOut( __METHOD__ );
1685 return $status;
1686 }
1687
1688 // Don't save a new page if it's blank or if it's a MediaWiki:
1689 // message with content equivalent to default (allow empty pages
1690 // in this case to disable messages, see bug 50124)
1691 $defaultMessageText = $this->mTitle->getDefaultMessageText();
1692 if ( $this->mTitle->getNamespace() === NS_MEDIAWIKI && $defaultMessageText !== false ) {
1693 $defaultText = $defaultMessageText;
1694 } else {
1695 $defaultText = '';
1696 }
1697
1698 if ( !$this->allowBlankArticle && $this->textbox1 === $defaultText ) {
1699 $this->blankArticle = true;
1700 $status->fatal( 'blankarticle' );
1701 $status->setResult( false, self::AS_BLANK_ARTICLE );
1702 wfProfileOut( __METHOD__ );
1703 return $status;
1704 }
1705
1706 if ( !$this->runPostMergeFilters( $textbox_content, $status, $wgUser ) ) {
1707 wfProfileOut( __METHOD__ );
1708 return $status;
1709 }
1710
1711 $content = $textbox_content;
1712
1713 $result['sectionanchor'] = '';
1714 if ( $this->section == 'new' ) {
1715 if ( $this->sectiontitle !== '' ) {
1716 // Insert the section title above the content.
1717 $content = $content->addSectionHeader( $this->sectiontitle );
1718 } elseif ( $this->summary !== '' ) {
1719 // Insert the section title above the content.
1720 $content = $content->addSectionHeader( $this->summary );
1721 }
1722 $this->summary = $this->newSectionSummary( $result['sectionanchor'] );
1723 }
1724
1725 $status->value = self::AS_SUCCESS_NEW_ARTICLE;
1726
1727 } else { # not $new
1728
1729 # Article exists. Check for edit conflict.
1730
1731 $this->mArticle->clear(); # Force reload of dates, etc.
1732 $timestamp = $this->mArticle->getTimestamp();
1733
1734 wfDebug( "timestamp: {$timestamp}, edittime: {$this->edittime}\n" );
1735
1736 if ( $timestamp != $this->edittime ) {
1737 $this->isConflict = true;
1738 if ( $this->section == 'new' ) {
1739 if ( $this->mArticle->getUserText() == $wgUser->getName() &&
1740 $this->mArticle->getComment() == $this->newSectionSummary()
1741 ) {
1742 // Probably a duplicate submission of a new comment.
1743 // This can happen when squid resends a request after
1744 // a timeout but the first one actually went through.
1745 wfDebug( __METHOD__
1746 . ": duplicate new section submission; trigger edit conflict!\n" );
1747 } else {
1748 // New comment; suppress conflict.
1749 $this->isConflict = false;
1750 wfDebug( __METHOD__ . ": conflict suppressed; new section\n" );
1751 }
1752 } elseif ( $this->section == ''
1753 && Revision::userWasLastToEdit(
1754 DB_MASTER, $this->mTitle->getArticleID(),
1755 $wgUser->getId(), $this->edittime
1756 )
1757 ) {
1758 # Suppress edit conflict with self, except for section edits where merging is required.
1759 wfDebug( __METHOD__ . ": Suppressing edit conflict, same user.\n" );
1760 $this->isConflict = false;
1761 }
1762 }
1763
1764 // If sectiontitle is set, use it, otherwise use the summary as the section title.
1765 if ( $this->sectiontitle !== '' ) {
1766 $sectionTitle = $this->sectiontitle;
1767 } else {
1768 $sectionTitle = $this->summary;
1769 }
1770
1771 $content = null;
1772
1773 if ( $this->isConflict ) {
1774 wfDebug( __METHOD__
1775 . ": conflict! getting section '{$this->section}' for time '{$this->edittime}'"
1776 . " (article time '{$timestamp}')\n" );
1777
1778 $content = $this->mArticle->replaceSectionContent(
1779 $this->section,
1780 $textbox_content,
1781 $sectionTitle,
1782 $this->edittime
1783 );
1784 } else {
1785 wfDebug( __METHOD__ . ": getting section '{$this->section}'\n" );
1786 $content = $this->mArticle->replaceSectionContent(
1787 $this->section,
1788 $textbox_content,
1789 $sectionTitle
1790 );
1791 }
1792
1793 if ( is_null( $content ) ) {
1794 wfDebug( __METHOD__ . ": activating conflict; section replace failed.\n" );
1795 $this->isConflict = true;
1796 $content = $textbox_content; // do not try to merge here!
1797 } elseif ( $this->isConflict ) {
1798 # Attempt merge
1799 if ( $this->mergeChangesIntoContent( $content ) ) {
1800 // Successful merge! Maybe we should tell the user the good news?
1801 $this->isConflict = false;
1802 wfDebug( __METHOD__ . ": Suppressing edit conflict, successful merge.\n" );
1803 } else {
1804 $this->section = '';
1805 $this->textbox1 = ContentHandler::getContentText( $content );
1806 wfDebug( __METHOD__ . ": Keeping edit conflict, failed merge.\n" );
1807 }
1808 }
1809
1810 if ( $this->isConflict ) {
1811 $status->setResult( false, self::AS_CONFLICT_DETECTED );
1812 wfProfileOut( __METHOD__ );
1813 return $status;
1814 }
1815
1816 if ( !$this->runPostMergeFilters( $content, $status, $wgUser ) ) {
1817 wfProfileOut( __METHOD__ );
1818 return $status;
1819 }
1820
1821 if ( $this->section == 'new' ) {
1822 // Handle the user preference to force summaries here
1823 if ( !$this->allowBlankSummary && trim( $this->summary ) == '' ) {
1824 $this->missingSummary = true;
1825 $status->fatal( 'missingsummary' ); // or 'missingcommentheader' if $section == 'new'. Blegh
1826 $status->value = self::AS_SUMMARY_NEEDED;
1827 wfProfileOut( __METHOD__ );
1828 return $status;
1829 }
1830
1831 // Do not allow the user to post an empty comment
1832 if ( $this->textbox1 == '' ) {
1833 $this->missingComment = true;
1834 $status->fatal( 'missingcommenttext' );
1835 $status->value = self::AS_TEXTBOX_EMPTY;
1836 wfProfileOut( __METHOD__ );
1837 return $status;
1838 }
1839 } elseif ( !$this->allowBlankSummary
1840 && !$content->equals( $this->getOriginalContent( $wgUser ) )
1841 && !$content->isRedirect()
1842 && md5( $this->summary ) == $this->autoSumm
1843 ) {
1844 $this->missingSummary = true;
1845 $status->fatal( 'missingsummary' );
1846 $status->value = self::AS_SUMMARY_NEEDED;
1847 wfProfileOut( __METHOD__ );
1848 return $status;
1849 }
1850
1851 # All's well
1852 wfProfileIn( __METHOD__ . '-sectionanchor' );
1853 $sectionanchor = '';
1854 if ( $this->section == 'new' ) {
1855 $this->summary = $this->newSectionSummary( $sectionanchor );
1856 } elseif ( $this->section != '' ) {
1857 # Try to get a section anchor from the section source, redirect
1858 # to edited section if header found.
1859 # XXX: Might be better to integrate this into Article::replaceSection
1860 # for duplicate heading checking and maybe parsing.
1861 $hasmatch = preg_match( "/^ *([=]{1,6})(.*?)(\\1) *\\n/i", $this->textbox1, $matches );
1862 # We can't deal with anchors, includes, html etc in the header for now,
1863 # headline would need to be parsed to improve this.
1864 if ( $hasmatch && strlen( $matches[2] ) > 0 ) {
1865 $sectionanchor = $wgParser->guessLegacySectionNameFromWikiText( $matches[2] );
1866 }
1867 }
1868 $result['sectionanchor'] = $sectionanchor;
1869 wfProfileOut( __METHOD__ . '-sectionanchor' );
1870
1871 // Save errors may fall down to the edit form, but we've now
1872 // merged the section into full text. Clear the section field
1873 // so that later submission of conflict forms won't try to
1874 // replace that into a duplicated mess.
1875 $this->textbox1 = $this->toEditText( $content );
1876 $this->section = '';
1877
1878 $status->value = self::AS_SUCCESS_UPDATE;
1879 }
1880
1881 // Check for length errors again now that the section is merged in
1882 $this->kblength = (int)( strlen( $this->toEditText( $content ) ) / 1024 );
1883 if ( $this->kblength > $wgMaxArticleSize ) {
1884 $this->tooBig = true;
1885 $status->setResult( false, self::AS_MAX_ARTICLE_SIZE_EXCEEDED );
1886 wfProfileOut( __METHOD__ );
1887 return $status;
1888 }
1889
1890 $flags = EDIT_DEFER_UPDATES | EDIT_AUTOSUMMARY |
1891 ( $new ? EDIT_NEW : EDIT_UPDATE ) |
1892 ( ( $this->minoredit && !$this->isNew ) ? EDIT_MINOR : 0 ) |
1893 ( $bot ? EDIT_FORCE_BOT : 0 );
1894
1895 $doEditStatus = $this->mArticle->doEditContent(
1896 $content,
1897 $this->summary,
1898 $flags,
1899 false,
1900 null,
1901 $content->getDefaultFormat()
1902 );
1903
1904 if ( !$doEditStatus->isOK() ) {
1905 // Failure from doEdit()
1906 // Show the edit conflict page for certain recognized errors from doEdit(),
1907 // but don't show it for errors from extension hooks
1908 $errors = $doEditStatus->getErrorsArray();
1909 if ( in_array( $errors[0][0],
1910 array( 'edit-gone-missing', 'edit-conflict', 'edit-already-exists' ) )
1911 ) {
1912 $this->isConflict = true;
1913 // Destroys data doEdit() put in $status->value but who cares
1914 $doEditStatus->value = self::AS_END;
1915 }
1916 wfProfileOut( __METHOD__ );
1917 return $doEditStatus;
1918 }
1919
1920 $result['nullEdit'] = $doEditStatus->hasMessage( 'edit-no-change' );
1921 if ( $result['nullEdit'] ) {
1922 // We don't know if it was a null edit until now, so increment here
1923 $wgUser->pingLimiter( 'linkpurge' );
1924 }
1925 $result['redirect'] = $content->isRedirect();
1926 $this->updateWatchlist();
1927 wfProfileOut( __METHOD__ );
1928 return $status;
1929 }
1930
1931 /**
1932 * Register the change of watch status
1933 */
1934 protected function updateWatchlist() {
1935 global $wgUser;
1936
1937 if ( $wgUser->isLoggedIn()
1938 && $this->watchthis != $wgUser->isWatched( $this->mTitle, WatchedItem::IGNORE_USER_RIGHTS )
1939 ) {
1940 $fname = __METHOD__;
1941 $title = $this->mTitle;
1942 $watch = $this->watchthis;
1943
1944 // Do this in its own transaction to reduce contention...
1945 $dbw = wfGetDB( DB_MASTER );
1946 $dbw->onTransactionIdle( function () use ( $dbw, $title, $watch, $wgUser, $fname ) {
1947 WatchAction::doWatchOrUnwatch( $watch, $title, $wgUser );
1948 } );
1949 }
1950 }
1951
1952 /**
1953 * Attempts to do 3-way merge of edit content with a base revision
1954 * and current content, in case of edit conflict, in whichever way appropriate
1955 * for the content type.
1956 *
1957 * @since 1.21
1958 *
1959 * @param Content $editContent
1960 *
1961 * @return bool
1962 */
1963 private function mergeChangesIntoContent( &$editContent ) {
1964 wfProfileIn( __METHOD__ );
1965
1966 $db = wfGetDB( DB_MASTER );
1967
1968 // This is the revision the editor started from
1969 $baseRevision = $this->getBaseRevision();
1970 $baseContent = $baseRevision ? $baseRevision->getContent() : null;
1971
1972 if ( is_null( $baseContent ) ) {
1973 wfProfileOut( __METHOD__ );
1974 return false;
1975 }
1976
1977 // The current state, we want to merge updates into it
1978 $currentRevision = Revision::loadFromTitle( $db, $this->mTitle );
1979 $currentContent = $currentRevision ? $currentRevision->getContent() : null;
1980
1981 if ( is_null( $currentContent ) ) {
1982 wfProfileOut( __METHOD__ );
1983 return false;
1984 }
1985
1986 $handler = ContentHandler::getForModelID( $baseContent->getModel() );
1987
1988 $result = $handler->merge3( $baseContent, $editContent, $currentContent );
1989
1990 if ( $result ) {
1991 $editContent = $result;
1992 wfProfileOut( __METHOD__ );
1993 return true;
1994 }
1995
1996 wfProfileOut( __METHOD__ );
1997 return false;
1998 }
1999
2000 /**
2001 * @return Revision
2002 */
2003 function getBaseRevision() {
2004 if ( !$this->mBaseRevision ) {
2005 $db = wfGetDB( DB_MASTER );
2006 $this->mBaseRevision = Revision::loadFromTimestamp(
2007 $db, $this->mTitle, $this->edittime );
2008 }
2009 return $this->mBaseRevision;
2010 }
2011
2012 /**
2013 * Check given input text against $wgSpamRegex, and return the text of the first match.
2014 *
2015 * @param string $text
2016 *
2017 * @return string|bool Matching string or false
2018 */
2019 public static function matchSpamRegex( $text ) {
2020 global $wgSpamRegex;
2021 // For back compatibility, $wgSpamRegex may be a single string or an array of regexes.
2022 $regexes = (array)$wgSpamRegex;
2023 return self::matchSpamRegexInternal( $text, $regexes );
2024 }
2025
2026 /**
2027 * Check given input text against $wgSummarySpamRegex, and return the text of the first match.
2028 *
2029 * @param string $text
2030 *
2031 * @return string|bool Matching string or false
2032 */
2033 public static function matchSummarySpamRegex( $text ) {
2034 global $wgSummarySpamRegex;
2035 $regexes = (array)$wgSummarySpamRegex;
2036 return self::matchSpamRegexInternal( $text, $regexes );
2037 }
2038
2039 /**
2040 * @param string $text
2041 * @param array $regexes
2042 * @return bool|string
2043 */
2044 protected static function matchSpamRegexInternal( $text, $regexes ) {
2045 foreach ( $regexes as $regex ) {
2046 $matches = array();
2047 if ( preg_match( $regex, $text, $matches ) ) {
2048 return $matches[0];
2049 }
2050 }
2051 return false;
2052 }
2053
2054 function setHeaders() {
2055 global $wgOut, $wgUser;
2056
2057 $wgOut->addModules( 'mediawiki.action.edit' );
2058 $wgOut->addModuleStyles( 'mediawiki.action.edit.styles' );
2059
2060 if ( $wgUser->getOption( 'uselivepreview', false ) ) {
2061 $wgOut->addModules( 'mediawiki.action.edit.preview' );
2062 }
2063
2064 if ( $wgUser->getOption( 'useeditwarning', false ) ) {
2065 $wgOut->addModules( 'mediawiki.action.edit.editWarning' );
2066 }
2067
2068 $wgOut->setRobotPolicy( 'noindex,nofollow' );
2069
2070 # Enabled article-related sidebar, toplinks, etc.
2071 $wgOut->setArticleRelated( true );
2072
2073 $contextTitle = $this->getContextTitle();
2074 if ( $this->isConflict ) {
2075 $msg = 'editconflict';
2076 } elseif ( $contextTitle->exists() && $this->section != '' ) {
2077 $msg = $this->section == 'new' ? 'editingcomment' : 'editingsection';
2078 } else {
2079 $msg = $contextTitle->exists()
2080 || ( $contextTitle->getNamespace() == NS_MEDIAWIKI
2081 && $contextTitle->getDefaultMessageText() !== false
2082 )
2083 ? 'editing'
2084 : 'creating';
2085 }
2086
2087 # Use the title defined by DISPLAYTITLE magic word when present
2088 $displayTitle = isset( $this->mParserOutput ) ? $this->mParserOutput->getDisplayTitle() : false;
2089 if ( $displayTitle === false ) {
2090 $displayTitle = $contextTitle->getPrefixedText();
2091 }
2092 $wgOut->setPageTitle( wfMessage( $msg, $displayTitle ) );
2093 }
2094
2095 /**
2096 * Show all applicable editing introductions
2097 */
2098 protected function showIntro() {
2099 global $wgOut, $wgUser;
2100 if ( $this->suppressIntro ) {
2101 return;
2102 }
2103
2104 $namespace = $this->mTitle->getNamespace();
2105
2106 if ( $namespace == NS_MEDIAWIKI ) {
2107 # Show a warning if editing an interface message
2108 $wgOut->wrapWikiMsg( "<div class='mw-editinginterface'>\n$1\n</div>", 'editinginterface' );
2109 } elseif ( $namespace == NS_FILE ) {
2110 # Show a hint to shared repo
2111 $file = wfFindFile( $this->mTitle );
2112 if ( $file && !$file->isLocal() ) {
2113 $descUrl = $file->getDescriptionUrl();
2114 # there must be a description url to show a hint to shared repo
2115 if ( $descUrl ) {
2116 if ( !$this->mTitle->exists() ) {
2117 $wgOut->wrapWikiMsg( "<div class=\"mw-sharedupload-desc-create\">\n$1\n</div>", array(
2118 'sharedupload-desc-create', $file->getRepo()->getDisplayName(), $descUrl
2119 ) );
2120 } else {
2121 $wgOut->wrapWikiMsg( "<div class=\"mw-sharedupload-desc-edit\">\n$1\n</div>", array(
2122 'sharedupload-desc-edit', $file->getRepo()->getDisplayName(), $descUrl
2123 ) );
2124 }
2125 }
2126 }
2127 }
2128
2129 # Show a warning message when someone creates/edits a user (talk) page but the user does not exist
2130 # Show log extract when the user is currently blocked
2131 if ( $namespace == NS_USER || $namespace == NS_USER_TALK ) {
2132 $parts = explode( '/', $this->mTitle->getText(), 2 );
2133 $username = $parts[0];
2134 $user = User::newFromName( $username, false /* allow IP users*/ );
2135 $ip = User::isIP( $username );
2136 $block = Block::newFromTarget( $user, $user );
2137 if ( !( $user && $user->isLoggedIn() ) && !$ip ) { # User does not exist
2138 $wgOut->wrapWikiMsg( "<div class=\"mw-userpage-userdoesnotexist error\">\n$1\n</div>",
2139 array( 'userpage-userdoesnotexist', wfEscapeWikiText( $username ) ) );
2140 } elseif ( !is_null( $block ) && $block->getType() != Block::TYPE_AUTO ) { # Show log extract if the user is currently blocked
2141 LogEventsList::showLogExtract(
2142 $wgOut,
2143 'block',
2144 MWNamespace::getCanonicalName( NS_USER ) . ':' . $block->getTarget(),
2145 '',
2146 array(
2147 'lim' => 1,
2148 'showIfEmpty' => false,
2149 'msgKey' => array(
2150 'blocked-notice-logextract',
2151 $user->getName() # Support GENDER in notice
2152 )
2153 )
2154 );
2155 }
2156 }
2157 # Try to add a custom edit intro, or use the standard one if this is not possible.
2158 if ( !$this->showCustomIntro() && !$this->mTitle->exists() ) {
2159 $helpLink = wfExpandUrl( Skin::makeInternalOrExternalUrl(
2160 wfMessage( 'helppage' )->inContentLanguage()->text()
2161 ) );
2162 if ( $wgUser->isLoggedIn() ) {
2163 $wgOut->wrapWikiMsg(
2164 // Suppress the external link icon, consider the help url an internal one
2165 "<div class=\"mw-newarticletext plainlinks\">\n$1\n</div>",
2166 array(
2167 'newarticletext',
2168 $helpLink
2169 )
2170 );
2171 } else {
2172 $wgOut->wrapWikiMsg(
2173 // Suppress the external link icon, consider the help url an internal one
2174 "<div class=\"mw-newarticletextanon plainlinks\">\n$1\n</div>",
2175 array(
2176 'newarticletextanon',
2177 $helpLink
2178 )
2179 );
2180 }
2181 }
2182 # Give a notice if the user is editing a deleted/moved page...
2183 if ( !$this->mTitle->exists() ) {
2184 LogEventsList::showLogExtract( $wgOut, array( 'delete', 'move' ), $this->mTitle,
2185 '',
2186 array(
2187 'lim' => 10,
2188 'conds' => array( "log_action != 'revision'" ),
2189 'showIfEmpty' => false,
2190 'msgKey' => array( 'recreate-moveddeleted-warn' )
2191 )
2192 );
2193 }
2194 }
2195
2196 /**
2197 * Attempt to show a custom editing introduction, if supplied
2198 *
2199 * @return bool
2200 */
2201 protected function showCustomIntro() {
2202 if ( $this->editintro ) {
2203 $title = Title::newFromText( $this->editintro );
2204 if ( $title instanceof Title && $title->exists() && $title->userCan( 'read' ) ) {
2205 global $wgOut;
2206 // Added using template syntax, to take <noinclude>'s into account.
2207 $wgOut->addWikiTextTitleTidy( '<div class="mw-editintro">{{:' . $title->getFullText() . '}}</div>', $this->mTitle );
2208 return true;
2209 }
2210 }
2211 return false;
2212 }
2213
2214 /**
2215 * Gets an editable textual representation of $content.
2216 * The textual representation can be turned by into a Content object by the
2217 * toEditContent() method.
2218 *
2219 * If $content is null or false or a string, $content is returned unchanged.
2220 *
2221 * If the given Content object is not of a type that can be edited using
2222 * the text base EditPage, an exception will be raised. Set
2223 * $this->allowNonTextContent to true to allow editing of non-textual
2224 * content.
2225 *
2226 * @param Content|null|bool|string $content
2227 * @return string The editable text form of the content.
2228 *
2229 * @throws MWException If $content is not an instance of TextContent and
2230 * $this->allowNonTextContent is not true.
2231 */
2232 protected function toEditText( $content ) {
2233 if ( $content === null || $content === false ) {
2234 return $content;
2235 }
2236
2237 if ( is_string( $content ) ) {
2238 return $content;
2239 }
2240
2241 if ( !$this->isSupportedContentModel( $content->getModel() ) ) {
2242 throw new MWException( 'This content model is not supported: '
2243 . ContentHandler::getLocalizedName( $content->getModel() ) );
2244 }
2245
2246 return $content->serialize( $this->contentFormat );
2247 }
2248
2249 /**
2250 * Turns the given text into a Content object by unserializing it.
2251 *
2252 * If the resulting Content object is not of a type that can be edited using
2253 * the text base EditPage, an exception will be raised. Set
2254 * $this->allowNonTextContent to true to allow editing of non-textual
2255 * content.
2256 *
2257 * @param string|null|bool $text Text to unserialize
2258 * @return Content The content object created from $text. If $text was false
2259 * or null, false resp. null will be returned instead.
2260 *
2261 * @throws MWException If unserializing the text results in a Content
2262 * object that is not an instance of TextContent and
2263 * $this->allowNonTextContent is not true.
2264 */
2265 protected function toEditContent( $text ) {
2266 if ( $text === false || $text === null ) {
2267 return $text;
2268 }
2269
2270 $content = ContentHandler::makeContent( $text, $this->getTitle(),
2271 $this->contentModel, $this->contentFormat );
2272
2273 if ( !$this->isSupportedContentModel( $content->getModel() ) ) {
2274 throw new MWException( 'This content model is not supported: '
2275 . ContentHandler::getLocalizedName( $content->getModel() ) );
2276 }
2277
2278 return $content;
2279 }
2280
2281 /**
2282 * Send the edit form and related headers to $wgOut
2283 * @param callable|null $formCallback That takes an OutputPage parameter; will be called
2284 * during form output near the top, for captchas and the like.
2285 */
2286 function showEditForm( $formCallback = null ) {
2287 global $wgOut, $wgUser;
2288
2289 wfProfileIn( __METHOD__ );
2290
2291 # need to parse the preview early so that we know which templates are used,
2292 # otherwise users with "show preview after edit box" will get a blank list
2293 # we parse this near the beginning so that setHeaders can do the title
2294 # setting work instead of leaving it in getPreviewText
2295 $previewOutput = '';
2296 if ( $this->formtype == 'preview' ) {
2297 $previewOutput = $this->getPreviewText();
2298 }
2299
2300 wfRunHooks( 'EditPage::showEditForm:initial', array( &$this, &$wgOut ) );
2301
2302 $this->setHeaders();
2303
2304 if ( $this->showHeader() === false ) {
2305 wfProfileOut( __METHOD__ );
2306 return;
2307 }
2308
2309 $wgOut->addHTML( $this->editFormPageTop );
2310
2311 if ( $wgUser->getOption( 'previewontop' ) ) {
2312 $this->displayPreviewArea( $previewOutput, true );
2313 }
2314
2315 $wgOut->addHTML( $this->editFormTextTop );
2316
2317 $showToolbar = true;
2318 if ( $this->wasDeletedSinceLastEdit() ) {
2319 if ( $this->formtype == 'save' ) {
2320 // Hide the toolbar and edit area, user can click preview to get it back
2321 // Add an confirmation checkbox and explanation.
2322 $showToolbar = false;
2323 } else {
2324 $wgOut->wrapWikiMsg( "<div class='error mw-deleted-while-editing'>\n$1\n</div>",
2325 'deletedwhileediting' );
2326 }
2327 }
2328
2329 // @todo add EditForm plugin interface and use it here!
2330 // search for textarea1 and textares2, and allow EditForm to override all uses.
2331 $wgOut->addHTML( Html::openElement(
2332 'form',
2333 array(
2334 'id' => self::EDITFORM_ID,
2335 'name' => self::EDITFORM_ID,
2336 'method' => 'post',
2337 'action' => $this->getActionURL( $this->getContextTitle() ),
2338 'enctype' => 'multipart/form-data'
2339 )
2340 ) );
2341
2342 if ( is_callable( $formCallback ) ) {
2343 call_user_func_array( $formCallback, array( &$wgOut ) );
2344 }
2345
2346 // Add an empty field to trip up spambots
2347 $wgOut->addHTML(
2348 Xml::openElement( 'div', array( 'id' => 'antispam-container', 'style' => 'display: none;' ) )
2349 . Html::rawElement(
2350 'label',
2351 array( 'for' => 'wpAntiSpam' ),
2352 wfMessage( 'simpleantispam-label' )->parse()
2353 )
2354 . Xml::element(
2355 'input',
2356 array(
2357 'type' => 'text',
2358 'name' => 'wpAntispam',
2359 'id' => 'wpAntispam',
2360 'value' => ''
2361 )
2362 )
2363 . Xml::closeElement( 'div' )
2364 );
2365
2366 wfRunHooks( 'EditPage::showEditForm:fields', array( &$this, &$wgOut ) );
2367
2368 // Put these up at the top to ensure they aren't lost on early form submission
2369 $this->showFormBeforeText();
2370
2371 if ( $this->wasDeletedSinceLastEdit() && 'save' == $this->formtype ) {
2372 $username = $this->lastDelete->user_name;
2373 $comment = $this->lastDelete->log_comment;
2374
2375 // It is better to not parse the comment at all than to have templates expanded in the middle
2376 // TODO: can the checkLabel be moved outside of the div so that wrapWikiMsg could be used?
2377 $key = $comment === ''
2378 ? 'confirmrecreate-noreason'
2379 : 'confirmrecreate';
2380 $wgOut->addHTML(
2381 '<div class="mw-confirm-recreate">' .
2382 wfMessage( $key, $username, "<nowiki>$comment</nowiki>" )->parse() .
2383 Xml::checkLabel( wfMessage( 'recreate' )->text(), 'wpRecreate', 'wpRecreate', false,
2384 array( 'title' => Linker::titleAttrib( 'recreate' ), 'tabindex' => 1, 'id' => 'wpRecreate' )
2385 ) .
2386 '</div>'
2387 );
2388 }
2389
2390 # When the summary is hidden, also hide them on preview/show changes
2391 if ( $this->nosummary ) {
2392 $wgOut->addHTML( Html::hidden( 'nosummary', true ) );
2393 }
2394
2395 # If a blank edit summary was previously provided, and the appropriate
2396 # user preference is active, pass a hidden tag as wpIgnoreBlankSummary. This will stop the
2397 # user being bounced back more than once in the event that a summary
2398 # is not required.
2399 #####
2400 # For a bit more sophisticated detection of blank summaries, hash the
2401 # automatic one and pass that in the hidden field wpAutoSummary.
2402 if ( $this->missingSummary || ( $this->section == 'new' && $this->nosummary ) ) {
2403 $wgOut->addHTML( Html::hidden( 'wpIgnoreBlankSummary', true ) );
2404 }
2405
2406 if ( $this->undidRev ) {
2407 $wgOut->addHTML( Html::hidden( 'wpUndidRevision', $this->undidRev ) );
2408 }
2409
2410 if ( $this->hasPresetSummary ) {
2411 // If a summary has been preset using &summary= we don't want to prompt for
2412 // a different summary. Only prompt for a summary if the summary is blanked.
2413 // (Bug 17416)
2414 $this->autoSumm = md5( '' );
2415 }
2416
2417 $autosumm = $this->autoSumm ? $this->autoSumm : md5( $this->summary );
2418 $wgOut->addHTML( Html::hidden( 'wpAutoSummary', $autosumm ) );
2419
2420 $wgOut->addHTML( Html::hidden( 'oldid', $this->oldid ) );
2421
2422 $wgOut->addHTML( Html::hidden( 'format', $this->contentFormat ) );
2423 $wgOut->addHTML( Html::hidden( 'model', $this->contentModel ) );
2424
2425 if ( $this->section == 'new' ) {
2426 $this->showSummaryInput( true, $this->summary );
2427 $wgOut->addHTML( $this->getSummaryPreview( true, $this->summary ) );
2428 }
2429
2430 $wgOut->addHTML( $this->editFormTextBeforeContent );
2431
2432 if ( !$this->isCssJsSubpage && $showToolbar && $wgUser->getOption( 'showtoolbar' ) ) {
2433 $wgOut->addHTML( EditPage::getEditToolbar() );
2434 }
2435
2436 if ( $this->blankArticle ) {
2437 $wgOut->addHTML( Html::hidden( 'wpIgnoreBlankArticle', true ) );
2438 }
2439
2440 if ( $this->isConflict ) {
2441 // In an edit conflict bypass the overridable content form method
2442 // and fallback to the raw wpTextbox1 since editconflicts can't be
2443 // resolved between page source edits and custom ui edits using the
2444 // custom edit ui.
2445 $this->textbox2 = $this->textbox1;
2446
2447 $content = $this->getCurrentContent();
2448 $this->textbox1 = $this->toEditText( $content );
2449
2450 $this->showTextbox1();
2451 } else {
2452 $this->showContentForm();
2453 }
2454
2455 $wgOut->addHTML( $this->editFormTextAfterContent );
2456
2457 $this->showStandardInputs();
2458
2459 $this->showFormAfterText();
2460
2461 $this->showTosSummary();
2462
2463 $this->showEditTools();
2464
2465 $wgOut->addHTML( $this->editFormTextAfterTools . "\n" );
2466
2467 $wgOut->addHTML( Html::rawElement( 'div', array( 'class' => 'templatesUsed' ),
2468 Linker::formatTemplates( $this->getTemplates(), $this->preview, $this->section != '' ) ) );
2469
2470 $wgOut->addHTML( Html::rawElement( 'div', array( 'class' => 'hiddencats' ),
2471 Linker::formatHiddenCategories( $this->mArticle->getHiddenCategories() ) ) );
2472
2473 $wgOut->addHTML( Html::rawElement( 'div', array( 'class' => 'limitreport' ),
2474 self::getPreviewLimitReport( $this->mParserOutput ) ) );
2475
2476 $wgOut->addModules( 'mediawiki.action.edit.collapsibleFooter' );
2477
2478 if ( $this->isConflict ) {
2479 try {
2480 $this->showConflict();
2481 } catch ( MWContentSerializationException $ex ) {
2482 // this can't really happen, but be nice if it does.
2483 $msg = wfMessage(
2484 'content-failed-to-parse',
2485 $this->contentModel,
2486 $this->contentFormat,
2487 $ex->getMessage()
2488 );
2489 $wgOut->addWikiText( '<div class="error">' . $msg->text() . '</div>' );
2490 }
2491 }
2492
2493 // Marker for detecting truncated form data. This must be the last
2494 // parameter sent in order to be of use, so do not move me.
2495 $wgOut->addHTML( Html::hidden( 'wpUltimateParam', true ) );
2496 $wgOut->addHTML( $this->editFormTextBottom . "\n</form>\n" );
2497
2498 if ( !$wgUser->getOption( 'previewontop' ) ) {
2499 $this->displayPreviewArea( $previewOutput, false );
2500 }
2501
2502 wfProfileOut( __METHOD__ );
2503 }
2504
2505 /**
2506 * Extract the section title from current section text, if any.
2507 *
2508 * @param string $text
2509 * @return string|bool String or false
2510 */
2511 public static function extractSectionTitle( $text ) {
2512 preg_match( "/^(=+)(.+)\\1\\s*(\n|$)/i", $text, $matches );
2513 if ( !empty( $matches[2] ) ) {
2514 global $wgParser;
2515 return $wgParser->stripSectionName( trim( $matches[2] ) );
2516 } else {
2517 return false;
2518 }
2519 }
2520
2521 /**
2522 * @return bool
2523 */
2524 protected function showHeader() {
2525 global $wgOut, $wgUser, $wgMaxArticleSize, $wgLang;
2526 global $wgAllowUserCss, $wgAllowUserJs;
2527
2528 if ( $this->mTitle->isTalkPage() ) {
2529 $wgOut->addWikiMsg( 'talkpagetext' );
2530 }
2531
2532 // Add edit notices
2533 $wgOut->addHTML( implode( "\n", $this->mTitle->getEditNotices( $this->oldid ) ) );
2534
2535 if ( $this->isConflict ) {
2536 $wgOut->wrapWikiMsg( "<div class='mw-explainconflict'>\n$1\n</div>", 'explainconflict' );
2537 $this->edittime = $this->mArticle->getTimestamp();
2538 } else {
2539 if ( $this->section != '' && !$this->isSectionEditSupported() ) {
2540 // We use $this->section to much before this and getVal('wgSection') directly in other places
2541 // at this point we can't reset $this->section to '' to fallback to non-section editing.
2542 // Someone is welcome to try refactoring though
2543 $wgOut->showErrorPage( 'sectioneditnotsupported-title', 'sectioneditnotsupported-text' );
2544 return false;
2545 }
2546
2547 if ( $this->section != '' && $this->section != 'new' ) {
2548 if ( !$this->summary && !$this->preview && !$this->diff ) {
2549 $sectionTitle = self::extractSectionTitle( $this->textbox1 ); //FIXME: use Content object
2550 if ( $sectionTitle !== false ) {
2551 $this->summary = "/* $sectionTitle */ ";
2552 }
2553 }
2554 }
2555
2556 if ( $this->missingComment ) {
2557 $wgOut->wrapWikiMsg( "<div id='mw-missingcommenttext'>\n$1\n</div>", 'missingcommenttext' );
2558 }
2559
2560 if ( $this->missingSummary && $this->section != 'new' ) {
2561 $wgOut->wrapWikiMsg( "<div id='mw-missingsummary'>\n$1\n</div>", 'missingsummary' );
2562 }
2563
2564 if ( $this->missingSummary && $this->section == 'new' ) {
2565 $wgOut->wrapWikiMsg( "<div id='mw-missingcommentheader'>\n$1\n</div>", 'missingcommentheader' );
2566 }
2567
2568 if ( $this->blankArticle ) {
2569 $wgOut->wrapWikiMsg( "<div id='mw-blankarticle'>\n$1\n</div>", 'blankarticle' );
2570 }
2571
2572 if ( $this->hookError !== '' ) {
2573 $wgOut->addWikiText( $this->hookError );
2574 }
2575
2576 if ( !$this->checkUnicodeCompliantBrowser() ) {
2577 $wgOut->addWikiMsg( 'nonunicodebrowser' );
2578 }
2579
2580 if ( $this->section != 'new' ) {
2581 $revision = $this->mArticle->getRevisionFetched();
2582 if ( $revision ) {
2583 // Let sysop know that this will make private content public if saved
2584
2585 if ( !$revision->userCan( Revision::DELETED_TEXT, $wgUser ) ) {
2586 $wgOut->wrapWikiMsg(
2587 "<div class='mw-warning plainlinks'>\n$1\n</div>\n",
2588 'rev-deleted-text-permission'
2589 );
2590 } elseif ( $revision->isDeleted( Revision::DELETED_TEXT ) ) {
2591 $wgOut->wrapWikiMsg(
2592 "<div class='mw-warning plainlinks'>\n$1\n</div>\n",
2593 'rev-deleted-text-view'
2594 );
2595 }
2596
2597 if ( !$revision->isCurrent() ) {
2598 $this->mArticle->setOldSubtitle( $revision->getId() );
2599 $wgOut->addWikiMsg( 'editingold' );
2600 }
2601 } elseif ( $this->mTitle->exists() ) {
2602 // Something went wrong
2603
2604 $wgOut->wrapWikiMsg( "<div class='errorbox'>\n$1\n</div>\n",
2605 array( 'missing-revision', $this->oldid ) );
2606 }
2607 }
2608 }
2609
2610 if ( wfReadOnly() ) {
2611 $wgOut->wrapWikiMsg(
2612 "<div id=\"mw-read-only-warning\">\n$1\n</div>",
2613 array( 'readonlywarning', wfReadOnlyReason() )
2614 );
2615 } elseif ( $wgUser->isAnon() ) {
2616 if ( $this->formtype != 'preview' ) {
2617 $wgOut->wrapWikiMsg(
2618 "<div id='mw-anon-edit-warning'>\n$1\n</div>",
2619 array( 'anoneditwarning',
2620 // Log-in link
2621 '{{fullurl:Special:UserLogin|returnto={{FULLPAGENAMEE}}}}',
2622 // Sign-up link
2623 '{{fullurl:Special:UserLogin/signup|returnto={{FULLPAGENAMEE}}}}' )
2624 );
2625 } else {
2626 $wgOut->wrapWikiMsg( "<div id=\"mw-anon-preview-warning\">\n$1</div>",
2627 'anonpreviewwarning'
2628 );
2629 }
2630 } else {
2631 if ( $this->isCssJsSubpage ) {
2632 # Check the skin exists
2633 if ( $this->isWrongCaseCssJsPage ) {
2634 $wgOut->wrapWikiMsg(
2635 "<div class='error' id='mw-userinvalidcssjstitle'>\n$1\n</div>",
2636 array( 'userinvalidcssjstitle', $this->mTitle->getSkinFromCssJsSubpage() )
2637 );
2638 }
2639 if ( $this->formtype !== 'preview' ) {
2640 if ( $this->isCssSubpage && $wgAllowUserCss ) {
2641 $wgOut->wrapWikiMsg(
2642 "<div id='mw-usercssyoucanpreview'>\n$1\n</div>",
2643 array( 'usercssyoucanpreview' )
2644 );
2645 }
2646
2647 if ( $this->isJsSubpage && $wgAllowUserJs ) {
2648 $wgOut->wrapWikiMsg(
2649 "<div id='mw-userjsyoucanpreview'>\n$1\n</div>",
2650 array( 'userjsyoucanpreview' )
2651 );
2652 }
2653 }
2654 }
2655 }
2656
2657 if ( $this->mTitle->isProtected( 'edit' ) &&
2658 MWNamespace::getRestrictionLevels( $this->mTitle->getNamespace() ) !== array( '' )
2659 ) {
2660 # Is the title semi-protected?
2661 if ( $this->mTitle->isSemiProtected() ) {
2662 $noticeMsg = 'semiprotectedpagewarning';
2663 } else {
2664 # Then it must be protected based on static groups (regular)
2665 $noticeMsg = 'protectedpagewarning';
2666 }
2667 LogEventsList::showLogExtract( $wgOut, 'protect', $this->mTitle, '',
2668 array( 'lim' => 1, 'msgKey' => array( $noticeMsg ) ) );
2669 }
2670 if ( $this->mTitle->isCascadeProtected() ) {
2671 # Is this page under cascading protection from some source pages?
2672 list( $cascadeSources, /* $restrictions */ ) = $this->mTitle->getCascadeProtectionSources();
2673 $notice = "<div class='mw-cascadeprotectedwarning'>\n$1\n";
2674 $cascadeSourcesCount = count( $cascadeSources );
2675 if ( $cascadeSourcesCount > 0 ) {
2676 # Explain, and list the titles responsible
2677 foreach ( $cascadeSources as $page ) {
2678 $notice .= '* [[:' . $page->getPrefixedText() . "]]\n";
2679 }
2680 }
2681 $notice .= '</div>';
2682 $wgOut->wrapWikiMsg( $notice, array( 'cascadeprotectedwarning', $cascadeSourcesCount ) );
2683 }
2684 if ( !$this->mTitle->exists() && $this->mTitle->getRestrictions( 'create' ) ) {
2685 LogEventsList::showLogExtract( $wgOut, 'protect', $this->mTitle, '',
2686 array( 'lim' => 1,
2687 'showIfEmpty' => false,
2688 'msgKey' => array( 'titleprotectedwarning' ),
2689 'wrap' => "<div class=\"mw-titleprotectedwarning\">\n$1</div>" ) );
2690 }
2691
2692 if ( $this->kblength === false ) {
2693 $this->kblength = (int)( strlen( $this->textbox1 ) / 1024 );
2694 }
2695
2696 if ( $this->tooBig || $this->kblength > $wgMaxArticleSize ) {
2697 $wgOut->wrapWikiMsg( "<div class='error' id='mw-edit-longpageerror'>\n$1\n</div>",
2698 array(
2699 'longpageerror',
2700 $wgLang->formatNum( $this->kblength ),
2701 $wgLang->formatNum( $wgMaxArticleSize )
2702 )
2703 );
2704 } else {
2705 if ( !wfMessage( 'longpage-hint' )->isDisabled() ) {
2706 $wgOut->wrapWikiMsg( "<div id='mw-edit-longpage-hint'>\n$1\n</div>",
2707 array(
2708 'longpage-hint',
2709 $wgLang->formatSize( strlen( $this->textbox1 ) ),
2710 strlen( $this->textbox1 )
2711 )
2712 );
2713 }
2714 }
2715 # Add header copyright warning
2716 $this->showHeaderCopyrightWarning();
2717
2718 return true;
2719 }
2720
2721 /**
2722 * Standard summary input and label (wgSummary), abstracted so EditPage
2723 * subclasses may reorganize the form.
2724 * Note that you do not need to worry about the label's for=, it will be
2725 * inferred by the id given to the input. You can remove them both by
2726 * passing array( 'id' => false ) to $userInputAttrs.
2727 *
2728 * @param string $summary The value of the summary input
2729 * @param string $labelText The html to place inside the label
2730 * @param array $inputAttrs Array of attrs to use on the input
2731 * @param array $spanLabelAttrs Array of attrs to use on the span inside the label
2732 *
2733 * @return array An array in the format array( $label, $input )
2734 */
2735 function getSummaryInput( $summary = "", $labelText = null,
2736 $inputAttrs = null, $spanLabelAttrs = null
2737 ) {
2738 // Note: the maxlength is overridden in JS to 255 and to make it use UTF-8 bytes, not characters.
2739 $inputAttrs = ( is_array( $inputAttrs ) ? $inputAttrs : array() ) + array(
2740 'id' => 'wpSummary',
2741 'maxlength' => '200',
2742 'tabindex' => '1',
2743 'size' => 60,
2744 'spellcheck' => 'true',
2745 ) + Linker::tooltipAndAccesskeyAttribs( 'summary' );
2746
2747 $spanLabelAttrs = ( is_array( $spanLabelAttrs ) ? $spanLabelAttrs : array() ) + array(
2748 'class' => $this->missingSummary ? 'mw-summarymissed' : 'mw-summary',
2749 'id' => "wpSummaryLabel"
2750 );
2751
2752 $label = null;
2753 if ( $labelText ) {
2754 $label = Xml::tags(
2755 'label',
2756 $inputAttrs['id'] ? array( 'for' => $inputAttrs['id'] ) : null,
2757 $labelText
2758 );
2759 $label = Xml::tags( 'span', $spanLabelAttrs, $label );
2760 }
2761
2762 $input = Html::input( 'wpSummary', $summary, 'text', $inputAttrs );
2763
2764 return array( $label, $input );
2765 }
2766
2767 /**
2768 * @param bool $isSubjectPreview True if this is the section subject/title
2769 * up top, or false if this is the comment summary
2770 * down below the textarea
2771 * @param string $summary The text of the summary to display
2772 */
2773 protected function showSummaryInput( $isSubjectPreview, $summary = "" ) {
2774 global $wgOut, $wgContLang;
2775 # Add a class if 'missingsummary' is triggered to allow styling of the summary line
2776 $summaryClass = $this->missingSummary ? 'mw-summarymissed' : 'mw-summary';
2777 if ( $isSubjectPreview ) {
2778 if ( $this->nosummary ) {
2779 return;
2780 }
2781 } else {
2782 if ( !$this->mShowSummaryField ) {
2783 return;
2784 }
2785 }
2786 $summary = $wgContLang->recodeForEdit( $summary );
2787 $labelText = wfMessage( $isSubjectPreview ? 'subject' : 'summary' )->parse();
2788 list( $label, $input ) = $this->getSummaryInput(
2789 $summary,
2790 $labelText,
2791 array( 'class' => $summaryClass ),
2792 array()
2793 );
2794 $wgOut->addHTML( "{$label} {$input}" );
2795 }
2796
2797 /**
2798 * @param bool $isSubjectPreview True if this is the section subject/title
2799 * up top, or false if this is the comment summary
2800 * down below the textarea
2801 * @param string $summary The text of the summary to display
2802 * @return string
2803 */
2804 protected function getSummaryPreview( $isSubjectPreview, $summary = "" ) {
2805 // avoid spaces in preview, gets always trimmed on save
2806 $summary = trim( $summary );
2807 if ( !$summary || ( !$this->preview && !$this->diff ) ) {
2808 return "";
2809 }
2810
2811 global $wgParser;
2812
2813 if ( $isSubjectPreview ) {
2814 $summary = wfMessage( 'newsectionsummary' )->rawParams( $wgParser->stripSectionName( $summary ) )
2815 ->inContentLanguage()->text();
2816 }
2817
2818 $message = $isSubjectPreview ? 'subject-preview' : 'summary-preview';
2819
2820 $summary = wfMessage( $message )->parse()
2821 . Linker::commentBlock( $summary, $this->mTitle, $isSubjectPreview );
2822 return Xml::tags( 'div', array( 'class' => 'mw-summary-preview' ), $summary );
2823 }
2824
2825 protected function showFormBeforeText() {
2826 global $wgOut;
2827 $section = htmlspecialchars( $this->section );
2828 $wgOut->addHTML( <<<HTML
2829 <input type='hidden' value="{$section}" name="wpSection" />
2830 <input type='hidden' value="{$this->starttime}" name="wpStarttime" />
2831 <input type='hidden' value="{$this->edittime}" name="wpEdittime" />
2832 <input type='hidden' value="{$this->scrolltop}" name="wpScrolltop" id="wpScrolltop" />
2833
2834 HTML
2835 );
2836 if ( !$this->checkUnicodeCompliantBrowser() ) {
2837 $wgOut->addHTML( Html::hidden( 'safemode', '1' ) );
2838 }
2839 }
2840
2841 protected function showFormAfterText() {
2842 global $wgOut, $wgUser;
2843 /**
2844 * To make it harder for someone to slip a user a page
2845 * which submits an edit form to the wiki without their
2846 * knowledge, a random token is associated with the login
2847 * session. If it's not passed back with the submission,
2848 * we won't save the page, or render user JavaScript and
2849 * CSS previews.
2850 *
2851 * For anon editors, who may not have a session, we just
2852 * include the constant suffix to prevent editing from
2853 * broken text-mangling proxies.
2854 */
2855 $wgOut->addHTML( "\n" . Html::hidden( "wpEditToken", $wgUser->getEditToken() ) . "\n" );
2856 }
2857
2858 /**
2859 * Subpage overridable method for printing the form for page content editing
2860 * By default this simply outputs wpTextbox1
2861 * Subclasses can override this to provide a custom UI for editing;
2862 * be it a form, or simply wpTextbox1 with a modified content that will be
2863 * reverse modified when extracted from the post data.
2864 * Note that this is basically the inverse for importContentFormData
2865 */
2866 protected function showContentForm() {
2867 $this->showTextbox1();
2868 }
2869
2870 /**
2871 * Method to output wpTextbox1
2872 * The $textoverride method can be used by subclasses overriding showContentForm
2873 * to pass back to this method.
2874 *
2875 * @param array $customAttribs Array of html attributes to use in the textarea
2876 * @param string $textoverride Optional text to override $this->textarea1 with
2877 */
2878 protected function showTextbox1( $customAttribs = null, $textoverride = null ) {
2879 if ( $this->wasDeletedSinceLastEdit() && $this->formtype == 'save' ) {
2880 $attribs = array( 'style' => 'display:none;' );
2881 } else {
2882 $classes = array(); // Textarea CSS
2883 if ( $this->mTitle->isProtected( 'edit' ) &&
2884 MWNamespace::getRestrictionLevels( $this->mTitle->getNamespace() ) !== array( '' )
2885 ) {
2886 # Is the title semi-protected?
2887 if ( $this->mTitle->isSemiProtected() ) {
2888 $classes[] = 'mw-textarea-sprotected';
2889 } else {
2890 # Then it must be protected based on static groups (regular)
2891 $classes[] = 'mw-textarea-protected';
2892 }
2893 # Is the title cascade-protected?
2894 if ( $this->mTitle->isCascadeProtected() ) {
2895 $classes[] = 'mw-textarea-cprotected';
2896 }
2897 }
2898
2899 $attribs = array( 'tabindex' => 1 );
2900
2901 if ( is_array( $customAttribs ) ) {
2902 $attribs += $customAttribs;
2903 }
2904
2905 if ( count( $classes ) ) {
2906 if ( isset( $attribs['class'] ) ) {
2907 $classes[] = $attribs['class'];
2908 }
2909 $attribs['class'] = implode( ' ', $classes );
2910 }
2911 }
2912
2913 $this->showTextbox(
2914 $textoverride !== null ? $textoverride : $this->textbox1,
2915 'wpTextbox1',
2916 $attribs
2917 );
2918 }
2919
2920 protected function showTextbox2() {
2921 $this->showTextbox( $this->textbox2, 'wpTextbox2', array( 'tabindex' => 6, 'readonly' ) );
2922 }
2923
2924 protected function showTextbox( $text, $name, $customAttribs = array() ) {
2925 global $wgOut, $wgUser;
2926
2927 $wikitext = $this->safeUnicodeOutput( $text );
2928 if ( strval( $wikitext ) !== '' ) {
2929 // Ensure there's a newline at the end, otherwise adding lines
2930 // is awkward.
2931 // But don't add a newline if the ext is empty, or Firefox in XHTML
2932 // mode will show an extra newline. A bit annoying.
2933 $wikitext .= "\n";
2934 }
2935
2936 $attribs = $customAttribs + array(
2937 'accesskey' => ',',
2938 'id' => $name,
2939 'cols' => $wgUser->getIntOption( 'cols' ),
2940 'rows' => $wgUser->getIntOption( 'rows' ),
2941 // Avoid PHP notices when appending preferences
2942 // (appending allows customAttribs['style'] to still work).
2943 'style' => ''
2944 );
2945
2946 $pageLang = $this->mTitle->getPageLanguage();
2947 $attribs['lang'] = $pageLang->getCode();
2948 $attribs['dir'] = $pageLang->getDir();
2949
2950 $wgOut->addHTML( Html::textarea( $name, $wikitext, $attribs ) );
2951 }
2952
2953 protected function displayPreviewArea( $previewOutput, $isOnTop = false ) {
2954 global $wgOut;
2955 $classes = array();
2956 if ( $isOnTop ) {
2957 $classes[] = 'ontop';
2958 }
2959
2960 $attribs = array( 'id' => 'wikiPreview', 'class' => implode( ' ', $classes ) );
2961
2962 if ( $this->formtype != 'preview' ) {
2963 $attribs['style'] = 'display: none;';
2964 }
2965
2966 $wgOut->addHTML( Xml::openElement( 'div', $attribs ) );
2967
2968 if ( $this->formtype == 'preview' ) {
2969 $this->showPreview( $previewOutput );
2970 }
2971
2972 $wgOut->addHTML( '</div>' );
2973
2974 if ( $this->formtype == 'diff' ) {
2975 try {
2976 $this->showDiff();
2977 } catch ( MWContentSerializationException $ex ) {
2978 $msg = wfMessage(
2979 'content-failed-to-parse',
2980 $this->contentModel,
2981 $this->contentFormat,
2982 $ex->getMessage()
2983 );
2984 $wgOut->addWikiText( '<div class="error">' . $msg->text() . '</div>' );
2985 }
2986 }
2987 }
2988
2989 /**
2990 * Append preview output to $wgOut.
2991 * Includes category rendering if this is a category page.
2992 *
2993 * @param string $text The HTML to be output for the preview.
2994 */
2995 protected function showPreview( $text ) {
2996 global $wgOut;
2997 if ( $this->mTitle->getNamespace() == NS_CATEGORY ) {
2998 $this->mArticle->openShowCategory();
2999 }
3000 # This hook seems slightly odd here, but makes things more
3001 # consistent for extensions.
3002 wfRunHooks( 'OutputPageBeforeHTML', array( &$wgOut, &$text ) );
3003 $wgOut->addHTML( $text );
3004 if ( $this->mTitle->getNamespace() == NS_CATEGORY ) {
3005 $this->mArticle->closeShowCategory();
3006 }
3007 }
3008
3009 /**
3010 * Get a diff between the current contents of the edit box and the
3011 * version of the page we're editing from.
3012 *
3013 * If this is a section edit, we'll replace the section as for final
3014 * save and then make a comparison.
3015 */
3016 function showDiff() {
3017 global $wgUser, $wgContLang, $wgOut;
3018
3019 $oldtitlemsg = 'currentrev';
3020 # if message does not exist, show diff against the preloaded default
3021 if ( $this->mTitle->getNamespace() == NS_MEDIAWIKI && !$this->mTitle->exists() ) {
3022 $oldtext = $this->mTitle->getDefaultMessageText();
3023 if ( $oldtext !== false ) {
3024 $oldtitlemsg = 'defaultmessagetext';
3025 $oldContent = $this->toEditContent( $oldtext );
3026 } else {
3027 $oldContent = null;
3028 }
3029 } else {
3030 $oldContent = $this->getCurrentContent();
3031 }
3032
3033 $textboxContent = $this->toEditContent( $this->textbox1 );
3034
3035 $newContent = $this->mArticle->replaceSectionContent(
3036 $this->section, $textboxContent,
3037 $this->summary, $this->edittime );
3038
3039 if ( $newContent ) {
3040 ContentHandler::runLegacyHooks( 'EditPageGetDiffText', array( $this, &$newContent ) );
3041 wfRunHooks( 'EditPageGetDiffContent', array( $this, &$newContent ) );
3042
3043 $popts = ParserOptions::newFromUserAndLang( $wgUser, $wgContLang );
3044 $newContent = $newContent->preSaveTransform( $this->mTitle, $wgUser, $popts );
3045 }
3046
3047 if ( ( $oldContent && !$oldContent->isEmpty() ) || ( $newContent && !$newContent->isEmpty() ) ) {
3048 $oldtitle = wfMessage( $oldtitlemsg )->parse();
3049 $newtitle = wfMessage( 'yourtext' )->parse();
3050
3051 if ( !$oldContent ) {
3052 $oldContent = $newContent->getContentHandler()->makeEmptyContent();
3053 }
3054
3055 if ( !$newContent ) {
3056 $newContent = $oldContent->getContentHandler()->makeEmptyContent();
3057 }
3058
3059 $de = $oldContent->getContentHandler()->createDifferenceEngine( $this->mArticle->getContext() );
3060 $de->setContent( $oldContent, $newContent );
3061
3062 $difftext = $de->getDiff( $oldtitle, $newtitle );
3063 $de->showDiffStyle();
3064 } else {
3065 $difftext = '';
3066 }
3067
3068 $wgOut->addHTML( '<div id="wikiDiff">' . $difftext . '</div>' );
3069 }
3070
3071 /**
3072 * Show the header copyright warning.
3073 */
3074 protected function showHeaderCopyrightWarning() {
3075 $msg = 'editpage-head-copy-warn';
3076 if ( !wfMessage( $msg )->isDisabled() ) {
3077 global $wgOut;
3078 $wgOut->wrapWikiMsg( "<div class='editpage-head-copywarn'>\n$1\n</div>",
3079 'editpage-head-copy-warn' );
3080 }
3081 }
3082
3083 /**
3084 * Give a chance for site and per-namespace customizations of
3085 * terms of service summary link that might exist separately
3086 * from the copyright notice.
3087 *
3088 * This will display between the save button and the edit tools,
3089 * so should remain short!
3090 */
3091 protected function showTosSummary() {
3092 $msg = 'editpage-tos-summary';
3093 wfRunHooks( 'EditPageTosSummary', array( $this->mTitle, &$msg ) );
3094 if ( !wfMessage( $msg )->isDisabled() ) {
3095 global $wgOut;
3096 $wgOut->addHTML( '<div class="mw-tos-summary">' );
3097 $wgOut->addWikiMsg( $msg );
3098 $wgOut->addHTML( '</div>' );
3099 }
3100 }
3101
3102 protected function showEditTools() {
3103 global $wgOut;
3104 $wgOut->addHTML( '<div class="mw-editTools">' .
3105 wfMessage( 'edittools' )->inContentLanguage()->parse() .
3106 '</div>' );
3107 }
3108
3109 /**
3110 * Get the copyright warning
3111 *
3112 * Renamed to getCopyrightWarning(), old name kept around for backwards compatibility
3113 * @return string
3114 */
3115 protected function getCopywarn() {
3116 return self::getCopyrightWarning( $this->mTitle );
3117 }
3118
3119 /**
3120 * Get the copyright warning, by default returns wikitext
3121 *
3122 * @param Title $title
3123 * @param string $format Output format, valid values are any function of a Message object
3124 * @return string
3125 */
3126 public static function getCopyrightWarning( $title, $format = 'plain' ) {
3127 global $wgRightsText;
3128 if ( $wgRightsText ) {
3129 $copywarnMsg = array( 'copyrightwarning',
3130 '[[' . wfMessage( 'copyrightpage' )->inContentLanguage()->text() . ']]',
3131 $wgRightsText );
3132 } else {
3133 $copywarnMsg = array( 'copyrightwarning2',
3134 '[[' . wfMessage( 'copyrightpage' )->inContentLanguage()->text() . ']]' );
3135 }
3136 // Allow for site and per-namespace customization of contribution/copyright notice.
3137 wfRunHooks( 'EditPageCopyrightWarning', array( $title, &$copywarnMsg ) );
3138
3139 return "<div id=\"editpage-copywarn\">\n" .
3140 call_user_func_array( 'wfMessage', $copywarnMsg )->$format() . "\n</div>";
3141 }
3142
3143 /**
3144 * Get the Limit report for page previews
3145 *
3146 * @since 1.22
3147 * @param ParserOutput $output ParserOutput object from the parse
3148 * @return string HTML
3149 */
3150 public static function getPreviewLimitReport( $output ) {
3151 if ( !$output || !$output->getLimitReportData() ) {
3152 return '';
3153 }
3154
3155 wfProfileIn( __METHOD__ );
3156
3157 $limitReport = Html::rawElement( 'div', array( 'class' => 'mw-limitReportExplanation' ),
3158 wfMessage( 'limitreport-title' )->parseAsBlock()
3159 );
3160
3161 // Show/hide animation doesn't work correctly on a table, so wrap it in a div.
3162 $limitReport .= Html::openElement( 'div', array( 'class' => 'preview-limit-report-wrapper' ) );
3163
3164 $limitReport .= Html::openElement( 'table', array(
3165 'class' => 'preview-limit-report wikitable'
3166 ) ) .
3167 Html::openElement( 'tbody' );
3168
3169 foreach ( $output->getLimitReportData() as $key => $value ) {
3170 if ( wfRunHooks( 'ParserLimitReportFormat',
3171 array( $key, &$value, &$limitReport, true, true )
3172 ) ) {
3173 $keyMsg = wfMessage( $key );
3174 $valueMsg = wfMessage( array( "$key-value-html", "$key-value" ) );
3175 if ( !$valueMsg->exists() ) {
3176 $valueMsg = new RawMessage( '$1' );
3177 }
3178 if ( !$keyMsg->isDisabled() && !$valueMsg->isDisabled() ) {
3179 $limitReport .= Html::openElement( 'tr' ) .
3180 Html::rawElement( 'th', null, $keyMsg->parse() ) .
3181 Html::rawElement( 'td', null, $valueMsg->params( $value )->parse() ) .
3182 Html::closeElement( 'tr' );
3183 }
3184 }
3185 }
3186
3187 $limitReport .= Html::closeElement( 'tbody' ) .
3188 Html::closeElement( 'table' ) .
3189 Html::closeElement( 'div' );
3190
3191 wfProfileOut( __METHOD__ );
3192
3193 return $limitReport;
3194 }
3195
3196 protected function showStandardInputs( &$tabindex = 2 ) {
3197 global $wgOut, $wgUseMediaWikiUIEverywhere;
3198 $wgOut->addHTML( "<div class='editOptions'>\n" );
3199
3200 if ( $this->section != 'new' ) {
3201 $this->showSummaryInput( false, $this->summary );
3202 $wgOut->addHTML( $this->getSummaryPreview( false, $this->summary ) );
3203 }
3204
3205 $checkboxes = $this->getCheckboxes( $tabindex,
3206 array( 'minor' => $this->minoredit, 'watch' => $this->watchthis ) );
3207 $wgOut->addHTML( "<div class='editCheckboxes'>" . implode( $checkboxes, "\n" ) . "</div>\n" );
3208
3209 // Show copyright warning.
3210 $wgOut->addWikiText( $this->getCopywarn() );
3211 $wgOut->addHTML( $this->editFormTextAfterWarn );
3212
3213 $wgOut->addHTML( "<div class='editButtons'>\n" );
3214 $wgOut->addHTML( implode( $this->getEditButtons( $tabindex ), "\n" ) . "\n" );
3215
3216 $cancel = $this->getCancelLink();
3217 if ( $cancel !== '' ) {
3218 $cancel .= Html::element( 'span',
3219 array( 'class' => 'mw-editButtons-pipe-separator' ),
3220 wfMessage( 'pipe-separator' )->text() );
3221 }
3222
3223 $message = wfMessage( 'edithelppage' )->inContentLanguage()->text();
3224 $edithelpurl = Skin::makeInternalOrExternalUrl( $message );
3225 $attrs = array(
3226 'target' => 'helpwindow',
3227 'href' => $edithelpurl,
3228 );
3229 if ( $wgUseMediaWikiUIEverywhere ) {
3230 $attrs['class'] = 'mw-ui-button mw-ui-quiet';
3231 }
3232 $edithelp = Html::element( 'a', $attrs, wfMessage( 'edithelp' )->text() ) .
3233 wfMessage( 'word-separator' )->escaped() .
3234 wfMessage( 'newwindow' )->parse();
3235
3236 $wgOut->addHTML( " <span class='cancelLink'>{$cancel}</span>\n" );
3237 $wgOut->addHTML( " <span class='editHelp'>{$edithelp}</span>\n" );
3238 $wgOut->addHTML( "</div><!-- editButtons -->\n" );
3239
3240 wfRunHooks( 'EditPage::showStandardInputs:options', array( $this, $wgOut, &$tabindex ) );
3241
3242 $wgOut->addHTML( "</div><!-- editOptions -->\n" );
3243 }
3244
3245 /**
3246 * Show an edit conflict. textbox1 is already shown in showEditForm().
3247 * If you want to use another entry point to this function, be careful.
3248 */
3249 protected function showConflict() {
3250 global $wgOut;
3251
3252 if ( wfRunHooks( 'EditPageBeforeConflictDiff', array( &$this, &$wgOut ) ) ) {
3253 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourdiff" );
3254
3255 $content1 = $this->toEditContent( $this->textbox1 );
3256 $content2 = $this->toEditContent( $this->textbox2 );
3257
3258 $handler = ContentHandler::getForModelID( $this->contentModel );
3259 $de = $handler->createDifferenceEngine( $this->mArticle->getContext() );
3260 $de->setContent( $content2, $content1 );
3261 $de->showDiff(
3262 wfMessage( 'yourtext' )->parse(),
3263 wfMessage( 'storedversion' )->text()
3264 );
3265
3266 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourtext" );
3267 $this->showTextbox2();
3268 }
3269 }
3270
3271 /**
3272 * @return string
3273 */
3274 public function getCancelLink() {
3275 global $wgUseMediaWikiUIEverywhere;
3276 $cancelParams = array();
3277 if ( !$this->isConflict && $this->oldid > 0 ) {
3278 $cancelParams['oldid'] = $this->oldid;
3279 }
3280 $attrs = array( 'id' => 'mw-editform-cancel' );
3281 if ( $wgUseMediaWikiUIEverywhere ) {
3282 $attrs['class'] = 'mw-ui-button mw-ui-quiet';
3283 }
3284
3285 return Linker::linkKnown(
3286 $this->getContextTitle(),
3287 wfMessage( 'cancel' )->parse(),
3288 $attrs,
3289 $cancelParams
3290 );
3291 }
3292
3293 /**
3294 * Returns the URL to use in the form's action attribute.
3295 * This is used by EditPage subclasses when simply customizing the action
3296 * variable in the constructor is not enough. This can be used when the
3297 * EditPage lives inside of a Special page rather than a custom page action.
3298 *
3299 * @param Title $title Title object for which is being edited (where we go to for &action= links)
3300 * @return string
3301 */
3302 protected function getActionURL( Title $title ) {
3303 return $title->getLocalURL( array( 'action' => $this->action ) );
3304 }
3305
3306 /**
3307 * Check if a page was deleted while the user was editing it, before submit.
3308 * Note that we rely on the logging table, which hasn't been always there,
3309 * but that doesn't matter, because this only applies to brand new
3310 * deletes.
3311 * @return bool
3312 */
3313 protected function wasDeletedSinceLastEdit() {
3314 if ( $this->deletedSinceEdit !== null ) {
3315 return $this->deletedSinceEdit;
3316 }
3317
3318 $this->deletedSinceEdit = false;
3319
3320 if ( $this->mTitle->isDeletedQuick() ) {
3321 $this->lastDelete = $this->getLastDelete();
3322 if ( $this->lastDelete ) {
3323 $deleteTime = wfTimestamp( TS_MW, $this->lastDelete->log_timestamp );
3324 if ( $deleteTime > $this->starttime ) {
3325 $this->deletedSinceEdit = true;
3326 }
3327 }
3328 }
3329
3330 return $this->deletedSinceEdit;
3331 }
3332
3333 /**
3334 * @return bool|stdClass
3335 */
3336 protected function getLastDelete() {
3337 $dbr = wfGetDB( DB_SLAVE );
3338 $data = $dbr->selectRow(
3339 array( 'logging', 'user' ),
3340 array(
3341 'log_type',
3342 'log_action',
3343 'log_timestamp',
3344 'log_user',
3345 'log_namespace',
3346 'log_title',
3347 'log_comment',
3348 'log_params',
3349 'log_deleted',
3350 'user_name'
3351 ), array(
3352 'log_namespace' => $this->mTitle->getNamespace(),
3353 'log_title' => $this->mTitle->getDBkey(),
3354 'log_type' => 'delete',
3355 'log_action' => 'delete',
3356 'user_id=log_user'
3357 ),
3358 __METHOD__,
3359 array( 'LIMIT' => 1, 'ORDER BY' => 'log_timestamp DESC' )
3360 );
3361 // Quick paranoid permission checks...
3362 if ( is_object( $data ) ) {
3363 if ( $data->log_deleted & LogPage::DELETED_USER ) {
3364 $data->user_name = wfMessage( 'rev-deleted-user' )->escaped();
3365 }
3366
3367 if ( $data->log_deleted & LogPage::DELETED_COMMENT ) {
3368 $data->log_comment = wfMessage( 'rev-deleted-comment' )->escaped();
3369 }
3370 }
3371
3372 return $data;
3373 }
3374
3375 /**
3376 * Get the rendered text for previewing.
3377 * @throws MWException
3378 * @return string
3379 */
3380 function getPreviewText() {
3381 global $wgOut, $wgUser, $wgRawHtml, $wgLang;
3382 global $wgAllowUserCss, $wgAllowUserJs;
3383
3384 wfProfileIn( __METHOD__ );
3385
3386 if ( $wgRawHtml && !$this->mTokenOk ) {
3387 // Could be an offsite preview attempt. This is very unsafe if
3388 // HTML is enabled, as it could be an attack.
3389 $parsedNote = '';
3390 if ( $this->textbox1 !== '' ) {
3391 // Do not put big scary notice, if previewing the empty
3392 // string, which happens when you initially edit
3393 // a category page, due to automatic preview-on-open.
3394 $parsedNote = $wgOut->parse( "<div class='previewnote'>" .
3395 wfMessage( 'session_fail_preview_html' )->text() . "</div>", true, /* interface */true );
3396 }
3397 wfProfileOut( __METHOD__ );
3398 return $parsedNote;
3399 }
3400
3401 $note = '';
3402
3403 try {
3404 $content = $this->toEditContent( $this->textbox1 );
3405
3406 $previewHTML = '';
3407 if ( !wfRunHooks(
3408 'AlternateEditPreview',
3409 array( $this, &$content, &$previewHTML, &$this->mParserOutput ) )
3410 ) {
3411 wfProfileOut( __METHOD__ );
3412 return $previewHTML;
3413 }
3414
3415 # provide a anchor link to the editform
3416 $continueEditing = '<span class="mw-continue-editing">' .
3417 '[[#' . self::EDITFORM_ID . '|' . $wgLang->getArrow() . ' ' .
3418 wfMessage( 'continue-editing' )->text() . ']]</span>';
3419 if ( $this->mTriedSave && !$this->mTokenOk ) {
3420 if ( $this->mTokenOkExceptSuffix ) {
3421 $note = wfMessage( 'token_suffix_mismatch' )->plain();
3422 } else {
3423 $note = wfMessage( 'session_fail_preview' )->plain();
3424 }
3425 } elseif ( $this->incompleteForm ) {
3426 $note = wfMessage( 'edit_form_incomplete' )->plain();
3427 } else {
3428 $note = wfMessage( 'previewnote' )->plain() . ' ' . $continueEditing;
3429 }
3430
3431 $parserOptions = $this->mArticle->makeParserOptions( $this->mArticle->getContext() );
3432 $parserOptions->setEditSection( false );
3433 $parserOptions->setIsPreview( true );
3434 $parserOptions->setIsSectionPreview( !is_null( $this->section ) && $this->section !== '' );
3435
3436 # don't parse non-wikitext pages, show message about preview
3437 if ( $this->mTitle->isCssJsSubpage() || $this->mTitle->isCssOrJsPage() ) {
3438 if ( $this->mTitle->isCssJsSubpage() ) {
3439 $level = 'user';
3440 } elseif ( $this->mTitle->isCssOrJsPage() ) {
3441 $level = 'site';
3442 } else {
3443 $level = false;
3444 }
3445
3446 if ( $content->getModel() == CONTENT_MODEL_CSS ) {
3447 $format = 'css';
3448 if ( $level === 'user' && !$wgAllowUserCss ) {
3449 $format = false;
3450 }
3451 } elseif ( $content->getModel() == CONTENT_MODEL_JAVASCRIPT ) {
3452 $format = 'js';
3453 if ( $level === 'user' && !$wgAllowUserJs ) {
3454 $format = false;
3455 }
3456 } else {
3457 $format = false;
3458 }
3459
3460 # Used messages to make sure grep find them:
3461 # Messages: usercsspreview, userjspreview, sitecsspreview, sitejspreview
3462 if ( $level && $format ) {
3463 $note = "<div id='mw-{$level}{$format}preview'>" .
3464 wfMessage( "{$level}{$format}preview" )->text() .
3465 ' ' . $continueEditing . "</div>";
3466 }
3467 }
3468
3469 # If we're adding a comment, we need to show the
3470 # summary as the headline
3471 if ( $this->section === "new" && $this->summary !== "" ) {
3472 $content = $content->addSectionHeader( $this->summary );
3473 }
3474
3475 $hook_args = array( $this, &$content );
3476 ContentHandler::runLegacyHooks( 'EditPageGetPreviewText', $hook_args );
3477 wfRunHooks( 'EditPageGetPreviewContent', $hook_args );
3478
3479 $parserOptions->enableLimitReport();
3480
3481 # For CSS/JS pages, we should have called the ShowRawCssJs hook here.
3482 # But it's now deprecated, so never mind
3483
3484 $content = $content->preSaveTransform( $this->mTitle, $wgUser, $parserOptions );
3485 $parserOutput = $content->getParserOutput(
3486 $this->getArticle()->getTitle(),
3487 null,
3488 $parserOptions
3489 );
3490
3491 $previewHTML = $parserOutput->getText();
3492 $this->mParserOutput = $parserOutput;
3493 $wgOut->addParserOutputMetadata( $parserOutput );
3494
3495 if ( count( $parserOutput->getWarnings() ) ) {
3496 $note .= "\n\n" . implode( "\n\n", $parserOutput->getWarnings() );
3497 }
3498 } catch ( MWContentSerializationException $ex ) {
3499 $m = wfMessage(
3500 'content-failed-to-parse',
3501 $this->contentModel,
3502 $this->contentFormat,
3503 $ex->getMessage()
3504 );
3505 $note .= "\n\n" . $m->parse();
3506 $previewHTML = '';
3507 }
3508
3509 if ( $this->isConflict ) {
3510 $conflict = '<h2 id="mw-previewconflict">'
3511 . wfMessage( 'previewconflict' )->escaped() . "</h2>\n";
3512 } else {
3513 $conflict = '<hr />';
3514 }
3515
3516 $previewhead = "<div class='previewnote'>\n" .
3517 '<h2 id="mw-previewheader">' . wfMessage( 'preview' )->escaped() . "</h2>" .
3518 $wgOut->parse( $note, true, /* interface */true ) . $conflict . "</div>\n";
3519
3520 $pageViewLang = $this->mTitle->getPageViewLanguage();
3521 $attribs = array( 'lang' => $pageViewLang->getHtmlCode(), 'dir' => $pageViewLang->getDir(),
3522 'class' => 'mw-content-' . $pageViewLang->getDir() );
3523 $previewHTML = Html::rawElement( 'div', $attribs, $previewHTML );
3524
3525 wfProfileOut( __METHOD__ );
3526 return $previewhead . $previewHTML . $this->previewTextAfterContent;
3527 }
3528
3529 /**
3530 * @return array
3531 */
3532 function getTemplates() {
3533 if ( $this->preview || $this->section != '' ) {
3534 $templates = array();
3535 if ( !isset( $this->mParserOutput ) ) {
3536 return $templates;
3537 }
3538 foreach ( $this->mParserOutput->getTemplates() as $ns => $template ) {
3539 foreach ( array_keys( $template ) as $dbk ) {
3540 $templates[] = Title::makeTitle( $ns, $dbk );
3541 }
3542 }
3543 return $templates;
3544 } else {
3545 return $this->mTitle->getTemplateLinksFrom();
3546 }
3547 }
3548
3549 /**
3550 * Shows a bulletin board style toolbar for common editing functions.
3551 * It can be disabled in the user preferences.
3552 *
3553 * @return string
3554 */
3555 static function getEditToolbar() {
3556 global $wgContLang, $wgOut;
3557 global $wgEnableUploads, $wgForeignFileRepos;
3558
3559 $imagesAvailable = $wgEnableUploads || count( $wgForeignFileRepos );
3560
3561 /**
3562 * $toolarray is an array of arrays each of which includes the
3563 * opening tag, the closing tag, optionally a sample text that is
3564 * inserted between the two when no selection is highlighted
3565 * and. The tip text is shown when the user moves the mouse
3566 * over the button.
3567 *
3568 * Images are defined in ResourceLoaderEditToolbarModule.
3569 */
3570 $toolarray = array(
3571 array(
3572 'id' => 'mw-editbutton-bold',
3573 'open' => '\'\'\'',
3574 'close' => '\'\'\'',
3575 'sample' => wfMessage( 'bold_sample' )->text(),
3576 'tip' => wfMessage( 'bold_tip' )->text(),
3577 ),
3578 array(
3579 'id' => 'mw-editbutton-italic',
3580 'open' => '\'\'',
3581 'close' => '\'\'',
3582 'sample' => wfMessage( 'italic_sample' )->text(),
3583 'tip' => wfMessage( 'italic_tip' )->text(),
3584 ),
3585 array(
3586 'id' => 'mw-editbutton-link',
3587 'open' => '[[',
3588 'close' => ']]',
3589 'sample' => wfMessage( 'link_sample' )->text(),
3590 'tip' => wfMessage( 'link_tip' )->text(),
3591 ),
3592 array(
3593 'id' => 'mw-editbutton-extlink',
3594 'open' => '[',
3595 'close' => ']',
3596 'sample' => wfMessage( 'extlink_sample' )->text(),
3597 'tip' => wfMessage( 'extlink_tip' )->text(),
3598 ),
3599 array(
3600 'id' => 'mw-editbutton-headline',
3601 'open' => "\n== ",
3602 'close' => " ==\n",
3603 'sample' => wfMessage( 'headline_sample' )->text(),
3604 'tip' => wfMessage( 'headline_tip' )->text(),
3605 ),
3606 $imagesAvailable ? array(
3607 'id' => 'mw-editbutton-image',
3608 'open' => '[[' . $wgContLang->getNsText( NS_FILE ) . ':',
3609 'close' => ']]',
3610 'sample' => wfMessage( 'image_sample' )->text(),
3611 'tip' => wfMessage( 'image_tip' )->text(),
3612 ) : false,
3613 $imagesAvailable ? array(
3614 'id' => 'mw-editbutton-media',
3615 'open' => '[[' . $wgContLang->getNsText( NS_MEDIA ) . ':',
3616 'close' => ']]',
3617 'sample' => wfMessage( 'media_sample' )->text(),
3618 'tip' => wfMessage( 'media_tip' )->text(),
3619 ) : false,
3620 array(
3621 'id' => 'mw-editbutton-nowiki',
3622 'open' => "<nowiki>",
3623 'close' => "</nowiki>",
3624 'sample' => wfMessage( 'nowiki_sample' )->text(),
3625 'tip' => wfMessage( 'nowiki_tip' )->text(),
3626 ),
3627 array(
3628 'id' => 'mw-editbutton-signature',
3629 'open' => '--~~~~',
3630 'close' => '',
3631 'sample' => '',
3632 'tip' => wfMessage( 'sig_tip' )->text(),
3633 ),
3634 array(
3635 'id' => 'mw-editbutton-hr',
3636 'open' => "\n----\n",
3637 'close' => '',
3638 'sample' => '',
3639 'tip' => wfMessage( 'hr_tip' )->text(),
3640 )
3641 );
3642
3643 $script = 'mw.loader.using("mediawiki.action.edit", function() {';
3644 foreach ( $toolarray as $tool ) {
3645 if ( !$tool ) {
3646 continue;
3647 }
3648
3649 $params = array(
3650 // Images are defined in ResourceLoaderEditToolbarModule
3651 false,
3652 // Note that we use the tip both for the ALT tag and the TITLE tag of the image.
3653 // Older browsers show a "speedtip" type message only for ALT.
3654 // Ideally these should be different, realistically they
3655 // probably don't need to be.
3656 $tool['tip'],
3657 $tool['open'],
3658 $tool['close'],
3659 $tool['sample'],
3660 $tool['id'],
3661 );
3662
3663 $script .= Xml::encodeJsCall( 'mw.toolbar.addButton', $params );
3664 }
3665
3666 // This used to be called on DOMReady from mediawiki.action.edit, which
3667 // ended up causing race conditions with the setup code above.
3668 $script .= "\n" .
3669 "// Create button bar\n" .
3670 "$(function() { mw.toolbar.init(); } );\n";
3671
3672 $script .= '});';
3673 $wgOut->addScript( Html::inlineScript( ResourceLoader::makeLoaderConditionalScript( $script ) ) );
3674
3675 $toolbar = '<div id="toolbar"></div>';
3676
3677 wfRunHooks( 'EditPageBeforeEditToolbar', array( &$toolbar ) );
3678
3679 return $toolbar;
3680 }
3681
3682 /**
3683 * Returns an array of html code of the following checkboxes:
3684 * minor and watch
3685 *
3686 * @param int $tabindex Current tabindex
3687 * @param array $checked Array of checkbox => bool, where bool indicates the checked
3688 * status of the checkbox
3689 *
3690 * @return array
3691 */
3692 public function getCheckboxes( &$tabindex, $checked ) {
3693 global $wgUser, $wgUseMediaWikiUIEverywhere;
3694
3695 $checkboxes = array();
3696
3697 // don't show the minor edit checkbox if it's a new page or section
3698 if ( !$this->isNew ) {
3699 $checkboxes['minor'] = '';
3700 $minorLabel = wfMessage( 'minoredit' )->parse();
3701 if ( $wgUser->isAllowed( 'minoredit' ) ) {
3702 $attribs = array(
3703 'tabindex' => ++$tabindex,
3704 'accesskey' => wfMessage( 'accesskey-minoredit' )->text(),
3705 'id' => 'wpMinoredit',
3706 );
3707 $minorEditHtml =
3708 Xml::check( 'wpMinoredit', $checked['minor'], $attribs ) .
3709 "&#160;<label for='wpMinoredit' id='mw-editpage-minoredit'" .
3710 Xml::expandAttributes( array( 'title' => Linker::titleAttrib( 'minoredit', 'withaccess' ) ) ) .
3711 ">{$minorLabel}</label>";
3712
3713 if ( $wgUseMediaWikiUIEverywhere ) {
3714 $checkboxes['minor'] = Html::openElement( 'div', array( 'class' => 'mw-ui-checkbox' ) ) .
3715 $minorEditHtml .
3716 Html::closeElement( 'div' );
3717 } else {
3718 $checkboxes['minor'] = $minorEditHtml;
3719 }
3720 }
3721 }
3722
3723 $watchLabel = wfMessage( 'watchthis' )->parse();
3724 $checkboxes['watch'] = '';
3725 if ( $wgUser->isLoggedIn() ) {
3726 $attribs = array(
3727 'tabindex' => ++$tabindex,
3728 'accesskey' => wfMessage( 'accesskey-watch' )->text(),
3729 'id' => 'wpWatchthis',
3730 );
3731 $watchThisHtml =
3732 Xml::check( 'wpWatchthis', $checked['watch'], $attribs ) .
3733 "&#160;<label for='wpWatchthis' id='mw-editpage-watch'" .
3734 Xml::expandAttributes( array( 'title' => Linker::titleAttrib( 'watch', 'withaccess' ) ) ) .
3735 ">{$watchLabel}</label>";
3736 if ( $wgUseMediaWikiUIEverywhere ) {
3737 $checkboxes['watch'] = Html::openElement( 'div', array( 'class' => 'mw-ui-checkbox' ) ) .
3738 $watchThisHtml .
3739 Html::closeElement( 'div' );
3740 } else {
3741 $checkboxes['watch'] = $watchThisHtml;
3742 }
3743 }
3744 wfRunHooks( 'EditPageBeforeEditChecks', array( &$this, &$checkboxes, &$tabindex ) );
3745 return $checkboxes;
3746 }
3747
3748 /**
3749 * Returns an array of html code of the following buttons:
3750 * save, diff, preview and live
3751 *
3752 * @param int $tabindex Current tabindex
3753 *
3754 * @return array
3755 */
3756 public function getEditButtons( &$tabindex ) {
3757 global $wgUseMediaWikiUIEverywhere;
3758
3759 $buttons = array();
3760
3761 $attribs = array(
3762 'id' => 'wpSave',
3763 'name' => 'wpSave',
3764 'type' => 'submit',
3765 'tabindex' => ++$tabindex,
3766 'value' => wfMessage( 'savearticle' )->text(),
3767 ) + Linker::tooltipAndAccesskeyAttribs( 'save' );
3768 if ( $wgUseMediaWikiUIEverywhere ) {
3769 $attribs['class'] = 'mw-ui-button mw-ui-constructive';
3770 }
3771 $buttons['save'] = Xml::element( 'input', $attribs, '' );
3772
3773 ++$tabindex; // use the same for preview and live preview
3774 $attribs = array(
3775 'id' => 'wpPreview',
3776 'name' => 'wpPreview',
3777 'type' => 'submit',
3778 'tabindex' => $tabindex,
3779 'value' => wfMessage( 'showpreview' )->text(),
3780 ) + Linker::tooltipAndAccesskeyAttribs( 'preview' );
3781 if ( $wgUseMediaWikiUIEverywhere ) {
3782 $attribs['class'] = 'mw-ui-button mw-ui-progressive';
3783 }
3784 $buttons['preview'] = Xml::element( 'input', $attribs, '' );
3785 $buttons['live'] = '';
3786
3787 $attribs = array(
3788 'id' => 'wpDiff',
3789 'name' => 'wpDiff',
3790 'type' => 'submit',
3791 'tabindex' => ++$tabindex,
3792 'value' => wfMessage( 'showdiff' )->text(),
3793 ) + Linker::tooltipAndAccesskeyAttribs( 'diff' );
3794 if ( $wgUseMediaWikiUIEverywhere ) {
3795 $attribs['class'] = 'mw-ui-button mw-ui-progressive';
3796 }
3797 $buttons['diff'] = Xml::element( 'input', $attribs, '' );
3798
3799 wfRunHooks( 'EditPageBeforeEditButtons', array( &$this, &$buttons, &$tabindex ) );
3800 return $buttons;
3801 }
3802
3803 /**
3804 * Output preview text only. This can be sucked into the edit page
3805 * via JavaScript, and saves the server time rendering the skin as
3806 * well as theoretically being more robust on the client (doesn't
3807 * disturb the edit box's undo history, won't eat your text on
3808 * failure, etc).
3809 *
3810 * @todo This doesn't include category or interlanguage links.
3811 * Would need to enhance it a bit, "<s>maybe wrap them in XML
3812 * or something...</s>" that might also require more skin
3813 * initialization, so check whether that's a problem.
3814 */
3815 function livePreview() {
3816 global $wgOut;
3817 $wgOut->disable();
3818 header( 'Content-type: text/xml; charset=utf-8' );
3819 header( 'Cache-control: no-cache' );
3820
3821 $previewText = $this->getPreviewText();
3822 #$categories = $skin->getCategoryLinks();
3823
3824 $s =
3825 '<?xml version="1.0" encoding="UTF-8" ?>' . "\n" .
3826 Xml::tags( 'livepreview', null,
3827 Xml::element( 'preview', null, $previewText )
3828 #. Xml::element( 'category', null, $categories )
3829 );
3830 echo $s;
3831 }
3832
3833 /**
3834 * Creates a basic error page which informs the user that
3835 * they have attempted to edit a nonexistent section.
3836 */
3837 function noSuchSectionPage() {
3838 global $wgOut;
3839
3840 $wgOut->prepareErrorPage( wfMessage( 'nosuchsectiontitle' ) );
3841
3842 $res = wfMessage( 'nosuchsectiontext', $this->section )->parseAsBlock();
3843 wfRunHooks( 'EditPageNoSuchSection', array( &$this, &$res ) );
3844 $wgOut->addHTML( $res );
3845
3846 $wgOut->returnToMain( false, $this->mTitle );
3847 }
3848
3849 /**
3850 * Show "your edit contains spam" page with your diff and text
3851 *
3852 * @param string|array|bool $match Text (or array of texts) which triggered one or more filters
3853 */
3854 public function spamPageWithContent( $match = false ) {
3855 global $wgOut, $wgLang;
3856 $this->textbox2 = $this->textbox1;
3857
3858 if ( is_array( $match ) ) {
3859 $match = $wgLang->listToText( $match );
3860 }
3861 $wgOut->prepareErrorPage( wfMessage( 'spamprotectiontitle' ) );
3862
3863 $wgOut->addHTML( '<div id="spamprotected">' );
3864 $wgOut->addWikiMsg( 'spamprotectiontext' );
3865 if ( $match ) {
3866 $wgOut->addWikiMsg( 'spamprotectionmatch', wfEscapeWikiText( $match ) );
3867 }
3868 $wgOut->addHTML( '</div>' );
3869
3870 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourdiff" );
3871 $this->showDiff();
3872
3873 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourtext" );
3874 $this->showTextbox2();
3875
3876 $wgOut->addReturnTo( $this->getContextTitle(), array( 'action' => 'edit' ) );
3877 }
3878
3879 /**
3880 * Check if the browser is on a blacklist of user-agents known to
3881 * mangle UTF-8 data on form submission. Returns true if Unicode
3882 * should make it through, false if it's known to be a problem.
3883 * @return bool
3884 */
3885 private function checkUnicodeCompliantBrowser() {
3886 global $wgBrowserBlackList, $wgRequest;
3887
3888 $currentbrowser = $wgRequest->getHeader( 'User-Agent' );
3889 if ( $currentbrowser === false ) {
3890 // No User-Agent header sent? Trust it by default...
3891 return true;
3892 }
3893
3894 foreach ( $wgBrowserBlackList as $browser ) {
3895 if ( preg_match( $browser, $currentbrowser ) ) {
3896 return false;
3897 }
3898 }
3899 return true;
3900 }
3901
3902 /**
3903 * Filter an input field through a Unicode de-armoring process if it
3904 * came from an old browser with known broken Unicode editing issues.
3905 *
3906 * @param WebRequest $request
3907 * @param string $field
3908 * @return string
3909 */
3910 protected function safeUnicodeInput( $request, $field ) {
3911 $text = rtrim( $request->getText( $field ) );
3912 return $request->getBool( 'safemode' )
3913 ? $this->unmakeSafe( $text )
3914 : $text;
3915 }
3916
3917 /**
3918 * Filter an output field through a Unicode armoring process if it is
3919 * going to an old browser with known broken Unicode editing issues.
3920 *
3921 * @param string $text
3922 * @return string
3923 */
3924 protected function safeUnicodeOutput( $text ) {
3925 global $wgContLang;
3926 $codedText = $wgContLang->recodeForEdit( $text );
3927 return $this->checkUnicodeCompliantBrowser()
3928 ? $codedText
3929 : $this->makeSafe( $codedText );
3930 }
3931
3932 /**
3933 * A number of web browsers are known to corrupt non-ASCII characters
3934 * in a UTF-8 text editing environment. To protect against this,
3935 * detected browsers will be served an armored version of the text,
3936 * with non-ASCII chars converted to numeric HTML character references.
3937 *
3938 * Preexisting such character references will have a 0 added to them
3939 * to ensure that round-trips do not alter the original data.
3940 *
3941 * @param string $invalue
3942 * @return string
3943 */
3944 private function makeSafe( $invalue ) {
3945 // Armor existing references for reversibility.
3946 $invalue = strtr( $invalue, array( "&#x" => "&#x0" ) );
3947
3948 $bytesleft = 0;
3949 $result = "";
3950 $working = 0;
3951 $valueLength = strlen( $invalue );
3952 for ( $i = 0; $i < $valueLength; $i++ ) {
3953 $bytevalue = ord( $invalue[$i] );
3954 if ( $bytevalue <= 0x7F ) { // 0xxx xxxx
3955 $result .= chr( $bytevalue );
3956 $bytesleft = 0;
3957 } elseif ( $bytevalue <= 0xBF ) { // 10xx xxxx
3958 $working = $working << 6;
3959 $working += ( $bytevalue & 0x3F );
3960 $bytesleft--;
3961 if ( $bytesleft <= 0 ) {
3962 $result .= "&#x" . strtoupper( dechex( $working ) ) . ";";
3963 }
3964 } elseif ( $bytevalue <= 0xDF ) { // 110x xxxx
3965 $working = $bytevalue & 0x1F;
3966 $bytesleft = 1;
3967 } elseif ( $bytevalue <= 0xEF ) { // 1110 xxxx
3968 $working = $bytevalue & 0x0F;
3969 $bytesleft = 2;
3970 } else { // 1111 0xxx
3971 $working = $bytevalue & 0x07;
3972 $bytesleft = 3;
3973 }
3974 }
3975 return $result;
3976 }
3977
3978 /**
3979 * Reverse the previously applied transliteration of non-ASCII characters
3980 * back to UTF-8. Used to protect data from corruption by broken web browsers
3981 * as listed in $wgBrowserBlackList.
3982 *
3983 * @param string $invalue
3984 * @return string
3985 */
3986 private function unmakeSafe( $invalue ) {
3987 $result = "";
3988 $valueLength = strlen( $invalue );
3989 for ( $i = 0; $i < $valueLength; $i++ ) {
3990 if ( ( substr( $invalue, $i, 3 ) == "&#x" ) && ( $invalue[$i + 3] != '0' ) ) {
3991 $i += 3;
3992 $hexstring = "";
3993 do {
3994 $hexstring .= $invalue[$i];
3995 $i++;
3996 } while ( ctype_xdigit( $invalue[$i] ) && ( $i < strlen( $invalue ) ) );
3997
3998 // Do some sanity checks. These aren't needed for reversibility,
3999 // but should help keep the breakage down if the editor
4000 // breaks one of the entities whilst editing.
4001 if ( ( substr( $invalue, $i, 1 ) == ";" ) and ( strlen( $hexstring ) <= 6 ) ) {
4002 $codepoint = hexdec( $hexstring );
4003 $result .= codepointToUtf8( $codepoint );
4004 } else {
4005 $result .= "&#x" . $hexstring . substr( $invalue, $i, 1 );
4006 }
4007 } else {
4008 $result .= substr( $invalue, $i, 1 );
4009 }
4010 }
4011 // reverse the transform that we made for reversibility reasons.
4012 return strtr( $result, array( "&#x0" => "&#x" ) );
4013 }
4014 }
MediaWiki Core